CVE-2022-43567
- Reference to the description:
- Description:
- In Splunk Enterprise versions below 8.2.9, 8.1.12, and 9.0.2, an authenticated user can run arbitrary operating system commands remotely through the use of specially crafted requests to the mobile alerts feature in the Splunk Secure Gateway app.
- Last updated date:
- 07/06/2023
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 11/08/2022
- Reference url to background
https://research.splunk.com/application/baa41f09-df48-4375-8991-520beea161be/