CVE-2022-43571Code Injection in Enterprise

CWE-94Code Injection3 documents3 sources
Severity
8.8HIGHNVD
EPSS
75.2%
top 1.12%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Splunk EnterpriseSplunkSplunk Cloud Platform
Timeline
PublishedNov 3
Latest updateNov 4

Description

In Splunk Enterprise versions below 8.2.9, 8.1.12, and 9.0.2, an authenticated user can execute arbitrary code through the dashboard PDF generation component.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages3 packages

CVEListV5splunk/splunk_enterprise8.18.1.12+2
NVDsplunk/splunk8.1.08.1.12+2

🔴Vulnerability Details

2
GHSA
GHSA-fw8h-qc74-r2c2: In Splunk Enterprise versions below 82022-11-04
CVEList
Remote Code Execution through dashboard PDF generation component in Splunk Enterprise2022-11-03
CVE-2022-43571 — Code Injection in Splunk Enterprise | cvebase