Lucene search
K

9 matches found

OSV
OSV
added 2022/06/15 5:15 p.m.3 views

CVE-2022-32157

Splunk Enterprise deployment servers in versions before 9.0 allow unauthenticated downloading of forwarder bundles. Remediation requires you to update the deployment server to version 9.0 and Configure authentication for deployment servers and clients...

7.5CVSS5.8AI score0.01256EPSS
Exploits0References4
NVD
NVD
added 2022/06/15 5:15 p.m.18 views

CVE-2022-32158

Splunk Enterprise deployment servers in versions before 8.1.10.1, 8.2.6.1, and 9.0 let clients deploy forwarder bundles to other deployment clients through the deployment server. An attacker that compromised a Universal Forwarder endpoint could use the vulnerability to execute arbitrary code on a...

10CVSS0.01416EPSS
Exploits0References2
NVD
NVD
added 2022/06/15 5:15 p.m.18 views

CVE-2022-32157

Splunk Enterprise deployment servers in versions before 9.0 allow unauthenticated downloading of forwarder bundles. Remediation requires you to update the deployment server to version 9.0 and Configure authentication for deployment servers and clients...

7.5CVSS0.01256EPSS
Exploits0References4
Prion
Prion
added 2022/06/15 5:15 p.m.16 views

Authentication flaw

Splunk Enterprise deployment servers in versions before 9.0 allow unauthenticated downloading of forwarder bundles. Remediation requires you to update the deployment server to version 9.0 and Configure authentication for deployment servers and clients...

5CVSS7.7AI score0.01256EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2022/06/15 4:50 p.m.29 views

CVE-2022-32158 Splunk Enterprise deployment servers allow client publishing of forwarder bundles

Splunk Enterprise deployment servers in versions before 8.1.10.1, 8.2.6.1, and 9.0 let clients deploy forwarder bundles to other deployment clients through the deployment server. An attacker that compromised a Universal Forwarder endpoint could use the vulnerability to execute arbitrary code on a...

9CVSS9.7AI score0.01416EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/06/15 4:50 p.m.20 views

CVE-2022-32157 Splunk Enterprise deployment servers allow unauthenticated forwarder bundle downloads

Splunk Enterprise deployment servers in versions before 9.0 allow unauthenticated downloading of forwarder bundles. Remediation requires you to update the deployment server to version 9.0 and Configure authentication for deployment servers and clients...

7.5CVSS7.9AI score0.01256EPSS
Exploits0References4
CVE
CVE
added 2022/06/15 4:50 p.m.85 views

CVE-2022-32157

CVE-2022-32157 concerns Splunk Enterprise deployment servers running versions before 9.0, which allow unauthenticated downloading of forwarder bundles. The root cause is improper access control on the Deployment Server component, leading to exposure of forwarder bundles to unauthenticated clients...

7.5CVSS7.7AI score0.01256EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/06/14 11:55 a.m.3 views

CVE-2022-32158

Splunk Enterprise deployment servers in versions before 8.1.10.1, 8.2.6.1, and 9.0 let clients deploy forwarder bundles to other deployment clients through the deployment server. An attacker that compromised a Universal Forwarder endpoint could use the vulnerability to execute arbitrary code on a...

10CVSS6.1AI score0.01416EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/06/14 11:55 a.m.4 views

CVE-2022-32157

Splunk Enterprise deployment servers in versions before 9.0 allow unauthenticated downloading of forwarder bundles. Remediation requires you to update the deployment server to version 9.0 and Configure authentication for deployment servers and clients...

7.5CVSS5.5AI score0.01256EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder