Vulnerability Description
In Splunk Enterprise versions below 8.2.9, 8.1.12, and 9.0.2, an authenticated user can execute arbitrary code through the dashboard PDF generation component.
CVSS Score
8.8
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Splunk | Splunk | >= 8.1.0, < 8.1.12 |
| Splunk | Splunk Cloud Platform | < 9.0.2209 |
Related Weaknesses (CWE)
References
- https://research.splunk.com/application/b06b41d7-9570-4985-8137-0784f582a1b3/ExploitVendor Advisory
- https://www.splunk.com/en_us/product-security/announcements/svd-2022-1111.htmlVendor Advisory
- https://research.splunk.com/application/b06b41d7-9570-4985-8137-0784f582a1b3/ExploitVendor Advisory
- https://www.splunk.com/en_us/product-security/announcements/svd-2022-1111.htmlVendor Advisory
FAQ
What is CVE-2022-43571?
CVE-2022-43571 is a vulnerability with a CVSS score of 8.8 (HIGH). In Splunk Enterprise versions below 8.2.9, 8.1.12, and 9.0.2, an authenticated user can execute arbitrary code through the dashboard PDF generation component.
How severe is CVE-2022-43571?
CVE-2022-43571 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-43571?
Check the references section above for vendor advisories and patch information. Affected products include: Splunk Splunk, Splunk Splunk Cloud Platform.