VDB
CVE-2022-37437
CVE-2022-37437
PUBLISHED
CVSS 7.400000095367432 HIGH
When using Ingest Actions to configure a destination that resides on Amazon Simple Storage Service (S3) in Splunk Web, TLS certificate validation is not correctly performed and tested for the destination. The vulnerability only affects connections between Splunk Enterprise and an Ingest Actions Destination through Splunk Web and only applies to environments that have configured TLS certificate validation. It does not apply to Destinations configured directly in the outputs.conf configuration file. The vulnerability affects Splunk Enterprise version 9.0.0 and does not affect versions below 9.0.0, including the 8.1.x and 8.2.x versions.
EPSS 0.19% · 40.6th percentile
Risk Scores
CVSS 3.1
7.400000095367432
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS Score
0.19%
40.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Splunk | Splunk Enterprise | 9.0.0 |
| splunk | splunk | 9.0.0 |
Exploit Intelligence
Timeline
- Aug 16, 2022 CVE Published
- Aug 17, 2022 EPSS Score
- Oct 2, 2022 EPSS Score
- Nov 17, 2022 EPSS Score
- Jan 2, 2023 EPSS Score
- Feb 17, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 4, 2023 EPSS Score
- May 20, 2023 EPSS Score
- Jul 5, 2023 EPSS Score
- Aug 19, 2023 EPSS Score
- Oct 4, 2023 EPSS Score
References
- https://www.splunk.com/en_us/product-security/announcements/svd-2022-0801.html advisory
- https://www.splunk.com/en_us/product-security/announcements/svd-2022-0804.html advisory
- https://www.splunk.com/en_us/product-security/announcements/svd-2022-0803.html advisory
- https://www.splunk.com/en_us/product-security/announcements/svd-2022-0802.html advisory
- https://nvd.nist.gov/vuln/detail/CVE-2022-37437 advisory