Lucene search
PRIOn knowledge basePRION:CVE-2021-31559HistoryMay 06, 2022 - 5:15 p.m.
Cross site request forgery (csrf)
2022-05-0617:15:00
PRIOn knowledge base
www.prio-n.com
4
0.001 Low
EPSS
Percentile
31.8%
A crafted request bypasses S2S TCP Token authentication writing arbitrary events to an index in Splunk Enterprise Indexer 8.1 versions before 8.1.5 and 8.2 versions before 8.2.1. The vulnerability impacts Indexers configured to use TCPTokens. It does not impact Universal Forwarders.
Related
nvd
nvd
CVE-2021-31559
2022-05-06 17:15:08
cve
cve
CVE-2021-31559
2022-05-06 17:15:08
nessus
nessus
Splunk Enterprise 8.1.x < 8.1.5, 8.2.x < 8.2.1 Authentication Bypass
2022-07-25 00:00:00
cvelist
cvelist
CVE-2021-31559 S2S TcpToken authentication bypass
2022-05-06 16:35:19