Lucene search
K

5 matches found

GithubExploit
GithubExploit
added 2022/12/27 8:0 a.m.12 views

Exploit for Code Injection in Splunk

CVE-2022-43571 CVE-2022-43571 Splunk RCE – my personal journe...

8.8CVSS9.4AI score0.14314EPSS
Exploits5
Vulnrichment
Vulnrichment
added 2022/11/03 10:56 p.m.10 views

CVE-2022-43571 Remote Code Execution through dashboard PDF generation component in Splunk Enterprise

In Splunk Enterprise versions below 8.2.9, 8.1.12, and 9.0.2, an authenticated user can execute arbitrary code through the dashboard PDF generation component...

8.8CVSS8.9AI score0.14314EPSS
Exploits5References2
Cvelist
Cvelist
added 2022/11/03 10:56 p.m.26 views

CVE-2022-43571 Remote Code Execution through dashboard PDF generation component in Splunk Enterprise

In Splunk Enterprise versions below 8.2.9, 8.1.12, and 9.0.2, an authenticated user can execute arbitrary code through the dashboard PDF generation component...

8.8CVSS9.1AI score0.14314EPSS
Exploits5References2
CVE
CVE
added 2022/11/03 10:56 p.m.110 views

CVE-2022-43571

CVE-2022-43571 affects Splunk Enterprise prior to versions 8.2.9, 8.1.12, and 9.0.2. An authenticated user can trigger arbitrary code execution via the dashboard PDF generation component (SimpleXML dashboards) due to code injection in styling parameters used during PDF export. Exploitation is dem...

8.8CVSS8.9AI score0.14314EPSS
Exploits5References2Affected Software2
Tenable Nessus
Tenable Nessus
added 2022/11/03 12:0 a.m.49 views

Splunk Enterprise 8.1 < 8.1.12, 8.2.0 < 8.2.9, 9.0.0 < 9.0.2 (SVD-2022-1111)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2022-1111 advisory. - In Splunk Enterprise versions below 8.2.9, 8.1.12, and 9.0.2, an authenticated user can execute arbitrary code through the...

8.8CVSS8.1AI score0.14314EPSS
Exploits5References2
Rows per page
Query Builder