CVE-2022-26889

Опубликовано: 06 мая 2022

Источник: nvd

CVSS3: 8.8

CVSS2: 5.1

EPSS Низкий

Описание

In Splunk Enterprise versions before 8.1.2, the uri path to load a relative resource within a web page is vulnerable to path traversal. It allows an attacker to potentially inject arbitrary content into the web page (e.g., HTML Injection, XSS) or bypass SPL safeguards for risky commands. The attack is browser-based. An attacker cannot exploit the attack at will and requires the attacker to initiate a request within the victim's browser (e.g., phishing).

Ссылки

https://research.splunk.com/application/path_traversal_spl_injection/
Vendor Advisory
https://www.splunk.com/en_us/product-security/announcements/svd-2022-0506.html
Vendor Advisory
https://research.splunk.com/application/path_traversal_spl_injection/
Vendor Advisory
https://www.splunk.com/en_us/product-security/announcements/svd-2022-0506.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:splunk:splunk:*:*:*:*:enterprise:*:*:*

Версия от 8.1.0 (включая) до 8.1.2 (исключая)

EPSS

Процентиль: 34%

0.00141

Низкий

8.8 High

CVSS3

5.1 Medium

CVSS2

Дефекты

CWE-20

CWE-22

Связанные уязвимости

GHSA-79w5-m8hm-g24m

CVSS3: 9.8

github

почти 4 года назад

The lack of sanitization in a relative url path in a search parameter allows for arbitrary injection of external content in Splunk Enterprise versions before 8.1.2.