CVE-2022-26070
Description
When handling a mismatched pre-authentication cookie, the application leaks the internal error message in the response, which contains the Splunk Enterprise local system path. The vulnerability impacts Splunk Enterprise versions before 8.1.0.
Risk Information
Base Score
4.3
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
0.263
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2022-26070 are fixed in Splunk Enterprise 8 (8.1.0) | Windows |
| Vulnerabilities CVE-2022-26070 are fixed in Splunk Enterprise 8 (x64) (8.1.0) | Windows |
| Vulnerabilities CVE-2022-26070 are fixed in Splunk Enterprise 8 (8.1.0.1) | Windows |
| Vulnerabilities CVE-2022-26070 are fixed in Splunk Enterprise 8 (x64) (8.1.0.1) | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-325532 | Splunk Enterprise 8 (8.2.7) |
| PATCH-332589 | Splunk Enterprise 8 (x64) (8.2.12) |
| PATCH-325532 | Splunk Enterprise 8 (8.2.7) |
| PATCH-332589 | Splunk Enterprise 8 (x64) (8.2.12) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234