Lucene search
HistoryNov 04, 2022 - 11:15 p.m.
CVE-2022-43572
splunk enterprise
denial-of-service
indexer
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
29.7%
In Splunk Enterprise versions below 8.2.9, 8.1.12, and 9.0.2, sending a malformed file through the Splunk-to-Splunk (S2S) or HTTP Event Collector (HEC) protocols to an indexer results in a blockage or denial-of-service preventing further indexing.
Affected configurations
Node
splunksplunkRange8.1.0–8.1.12enterprise
ORsplunksplunkRange8.2.0–8.2.9enterprise
ORsplunksplunkRange9.0.0–9.0.2enterprise
ORsplunksplunk_cloud_platformRange<9.0.2209
| Vendor | Product | Version | CPE |
|---|---|---|---|
| splunk | splunk | * | cpe:2.3:a:splunk:splunk:*:*:*:*:enterprise:*:*:* |
| splunk | splunk_cloud_platform | * | cpe:2.3:a:splunk:splunk_cloud_platform:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
nessus
nessus
Splunk Enterprise 8.1 < 8.1.12, 8.2.0 < 8.2.9, 9.0.0 < 9.0.2 (SVD-2022-1112)
2022-11-03 00:00:00
prion
prion
Design/Logic Flaw
2022-11-04 23:15:00
cve
cve
CVE-2022-43572
2022-11-04 23:15:10
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
29.7%
Related for NVD:CVE-2022-43572