CVE-2022-43572 Indexing blockage via malformed data sent through S2S or HEC protocols in Splunk Enterprise

🗓️ 04 Nov 2022 22:23:39Reported by SplunkType

Indexing blockage via malformed data in Splunk Enterprise version

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2022-43572	1 May 202520:15	–	circl
CNNVD	Splunk 代码注入漏洞	2 Nov 202200:00	–	cnnvd
CVE	CVE-2022-43572	4 Nov 202222:23	–	cve
EUVD	EUVD-2022-46568	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in Splunk Enterprise	3 Nov 202200:00	–	ncsc
NVD	CVE-2022-43572	4 Nov 202223:15	–	nvd
OSV	CVE-2022-43572	4 Nov 202223:15	–	osv
Prion	Design/Logic Flaw	4 Nov 202223:15	–	prion
Positive Technologies	PT-2022-26975 · Splunk · Splunk Enterprise	4 Nov 202200:00	–	ptsecurity
Tenable Nessus	Splunk Enterprise 8.1 < 8.1.12, 8.2.0 < 8.2.9, 9.0.0 < 9.0.2 (SVD-2022-1112)	3 Nov 202200:00	–	nessus

[
  {
    "defaultStatus": "affected",
    "product": "Splunk Enterprise",
    "vendor": "Splunk",
    "versions": [
      {
        "lessThan": "8.1.12",
        "status": "affected",
        "version": "8.1",
        "versionType": "custom"
      },
      {
        "lessThan": "8.2.9",
        "status": "affected",
        "version": "8.2",
        "versionType": "custom"
      },
      {
        "lessThan": "9.0.2",
        "status": "affected",
        "version": "9.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
splunk	www.splunk.com/en_us/product-security/announcements/svd-2022-1111.html

04 Nov 2022 22:23Current

7.6High risk

Vulners AI Score7.6

CVSS 3.17.5

EPSS0.00851

CWE-400