Vulnerability Details CVE-2022-37439
In Splunk Enterprise and Universal Forwarder versions in the following table, indexing a specially crafted ZIP file using the file monitoring input can result in a crash of the application. Attempts to restart the application would result in a crash and would require manually removing the malformed file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 15.4%
CVSS Severity
CVSS v3 Score 5.5
References
- https://research.splunk.com/application/b237d393-2f57-4531-aad7-ad3c17c8b041
- https://www.splunk.com/en_us/product-security/announcements/svd-2022-0803.html
- https://research.splunk.com/application/b237d393-2f57-4531-aad7-ad3c17c8b041
- https://www.splunk.com/en_us/product-security/announcements/svd-2022-0803.html
Products affected by CVE-2022-37439
-
cpe:2.3:a:splunk:splunk:8.1.0
-
cpe:2.3:a:splunk:splunk:8.1.1
-
cpe:2.3:a:splunk:splunk:8.1.2
-
cpe:2.3:a:splunk:splunk:8.1.4
-
cpe:2.3:a:splunk:splunk:8.1.5
-
cpe:2.3:a:splunk:splunk:8.1.6
-
cpe:2.3:a:splunk:splunk:8.1.7
-
cpe:2.3:a:splunk:splunk:8.2.0
-
cpe:2.3:a:splunk:universal_forwarder:*
-
cpe:2.3:a:splunk:universal_forwarder:8.2.0
-
cpe:2.3:a:splunk:universal_forwarder:8.2.6
-
cpe:2.3:a:splunk:universal_forwarder:8.2.7