What is CVE-2022-43567?

CVE-2022-43567 is a high-severity vulnerability in Splunk Enterprise, classified under Deserialization of Untrusted Data. CVSS score: 8.8/10. Published 2022-11-04.

How severe is CVE-2022-43567?

High severity. CVSS v3 base score is 8.8 out of 10.

Deserialization in Splunk Enterprise

CVE-2022-43567

In Splunk Enterprise versions below 8.2.9, 8.1.12, and 9.0.2, an authenticated user can run arbitrary operating system commands remotely through the use of specially crafted requests to the mobile alerts feature in the Splunk Secure Gatewa…

Vulnerability class: Insecure Deserialization

EPSS: 0.011 (78.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.8 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Splunk Enterprise — versions 8.1, 8.2, 9.0

Weakness classification (CWE)

CWE-502 — Deserialization of Untrusted Data

References

www.splunk.com/en_us/product-security/announcements/svd-2022-1107.html
research.splunk.com/application/baa41f09-df48-4375-8991-520beea161be/

Frequently asked questions

What is CVE-2022-43567?: CVE-2022-43567 is a high-severity vulnerability in Splunk Enterprise, classified under Deserialization of Untrusted Data. CVSS score: 8.8/10. Published 2022-11-04.
How severe is CVE-2022-43567?: High severity. CVSS v3 base score is 8.8 out of 10.