CVE-2022-27183

HIGH8.8Cross-site scripting

Description

The Monitoring Console app configured in Distributed mode allows for a Reflected XSS in a query parameter in Splunk Enterprise versions before 8.1.4. The Monitoring Console app is a bundled app included in Splunk Enterprise, not for download on SplunkBase, and not installed on Splunk Cloud Platform instances. Note that the Cloud Monitoring Console is not impacted.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected products

Splunk / Splunk EnterpriseVersion(s) before 8.1.4 – Version(s) before 8.1.4

References

MISChttps://www.splunk.com/en_us/product-security/announcements/svd-2022-0505.html
MISChttps://research.splunk.com/application/splunk_xss_in_monitoring_console/

Updated 3m ago · 2 sources