Lucene search

[email protected]NVD:CVE-2022-43561

HistoryNov 03, 2022 - 11:15 p.m.

CVE-2022-43561

2022-11-0323:15:15

CWE-79

[email protected]

web.nvd.nist.gov

splunk

cve-2022-43561

cross-site scripting

4.8 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

29.7%

JSON

In Splunk Enterprise versions below 8.1.12, 8.2.9, and 9.0.2, a remote user that holds the “power” Splunk role can store arbitrary scripts that can lead to persistent cross-site scripting (XSS). The vulnerability affects instances with Splunk Web enabled.

Affected configurations

NVD

Node

splunksplunkRange8.1.0–8.1.12enterprise

splunksplunkRange8.2.0–8.2.9enterprise

splunksplunkRange9.0.0–9.0.2enterprise

splunksplunk_cloud_platformRange<9.0.2208

References

research.splunk.com/application/a974d1ee-ddca-4837-b6ad-d55a8a239c20/

www.splunk.com/en_us/product-security/announcements/svd-2022-1101.html