Описание
Splunk Enterprise deployment servers in versions before 8.1.10.1, 8.2.6.1, and 9.0 let clients deploy forwarder bundles to other deployment clients through the deployment server. An attacker that compromised a Universal Forwarder endpoint could use the vulnerability to execute arbitrary code on all other Universal Forwarder endpoints subscribed to the deployment server.
Ссылки
- Release NotesVendor Advisory
- Vendor Advisory
- Release NotesVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
EPSS
9 Critical
CVSS3
10 Critical
CVSS3
7.5 High
CVSS2
Дефекты
Связанные уязвимости
Splunk Enterprise deployment servers in versions before 9.0 let clients deploy forwarder bundles to other deployment clients through the deployment server. An attacker that compromised a Universal Forwarder endpoint could use the vulnerability to execute arbitrary code on all other Universal Forwarder endpoints subscribed to the deployment server.
Уязвимость серверов развертывания платформы для операционного анализа Splunk Enterprise, позволяющая нарушителю скомпрометировать конечную точку Universal Forwarder и выполнить произвольный код
EPSS
9 Critical
CVSS3
10 Critical
CVSS3
7.5 High
CVSS2