PT-2022-11673 · Splunk · Splunk Enterprise

Ilias Dimopoulos

Published

2022-05-06

Updated

2022-05-17

CVE-2021-42743

CVSS v3.1

8.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Splunk Enterprise versions prior to 8.1.1

Description A misconfiguration in the node default path allows for local privilege escalation from a lower privileged user to the Splunk user. This issue affects Splunk Enterprise on Windows.

Recommendations For versions prior to 8.1.1, update to version 8.1.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the node default path to minimize the risk of exploitation.

Fix

LPE

Uncontrolled Search Path Element

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-427

Related Identifiers

CVE-2021-42743

Affected Products

Splunk Enterprise

PT-2022-11673 · Splunk · Splunk Enterprise

CVE-2021-42743

Weakness Enumeration

Related Identifiers

Affected Products

References · 5