Lucene search
+L

5 matches found

NVD
NVD
added 2022/11/03 11:15 p.m.23 views

CVE-2022-43561

In Splunk Enterprise versions below 8.1.12, 8.2.9, and 9.0.2, a remote user that holds the “power” Splunk role can store arbitrary scripts that can lead to persistent cross-site scripting XSS. The vulnerability affects instances with Splunk Web enabled...

6.4CVSS0.00634EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/11/03 10:6 p.m.7 views

CVE-2022-43561 Persistent Cross-Site Scripting in “Save Table” Dialog in Splunk Enterprise

In Splunk Enterprise versions below 8.1.12, 8.2.9, and 9.0.2, a remote user that holds the “power” Splunk role can store arbitrary scripts that can lead to persistent cross-site scripting XSS. The vulnerability affects instances with Splunk Web enabled...

6.4CVSS6.2AI score0.00634EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/11/03 10:6 p.m.29 views

CVE-2022-43561 Persistent Cross-Site Scripting in “Save Table” Dialog in Splunk Enterprise

In Splunk Enterprise versions below 8.1.12, 8.2.9, and 9.0.2, a remote user that holds the “power” Splunk role can store arbitrary scripts that can lead to persistent cross-site scripting XSS. The vulnerability affects instances with Splunk Web enabled...

6.4CVSS6.3AI score0.00634EPSS
Exploits1References2
CVE
CVE
added 2022/11/03 10:6 p.m.70 views

CVE-2022-43561

CVE-2022-43561 affects Splunk Enterprise: versions prior to 8.1.12, 8.2.9, and 9.0.2. A remote user with the “power” role can store arbitrary scripts via the Save Table feature, enabling persistent cross-site scripting (XSS) on Splunk Web-enabled instances. The underlying vulnerability allows inj...

6.4CVSS5.3AI score0.00634EPSS
Exploits1References2Affected Software2
Tenable Nessus
Tenable Nessus
added 2022/11/03 12:0 a.m.30 views

Splunk Enterprise 8.1 < 8.1.12, 8.2.0 < 8.2.9, 9.0.0 < 9.0.2 (SVD-2022-1101)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2022-1101 advisory. - In Splunk Enterprise versions below 8.1.12, 8.2.9, and 9.0.2, a remote user that holds the power Splunk role can store...

6.4CVSS5.2AI score0.00634EPSS
Exploits1References2
Rows per page
Query Builder