← voltar
CVE-2023-22943

Modular Input REST API Requests Connect via HTTP after Certificate Validation Failure in Splunk Add-on Builder and Splunk CloudConnect SDK

CVSS 4.8 MEDIUMEPSS 0.3%CWE-636
In Splunk Add-on Builder (AoB) versions below 4.1.2 and the Splunk CloudConnect SDK versions below 3.1.3, requests to third-party APIs through the REST API Modular Input incorrectly revert to using HTTP to connect after a failure to connect over HTTPS occurs.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
Produtos afetados
Splunk · Splunk Add-on BuilderSplunk · Splunk CloudConnect SDK

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://advisory.splunk.com/advisories/SVD-2023-0213