CVE-2022-37439

Summary

In Splunk Enterprise and Universal Forwarder versions in the following table, indexing a specially crafted ZIP file using the file monitoring input can result in a crash of the application. Attempts to restart the application would result in a crash and would require manually removing the malformed file.

Affected Software

VendorProductVersion RangeStatus
SplunkSplunk Enterprise8.2 < 8.2.7.1affected
SplunkSplunk Enterprise8.1 < 8.1.11affected
SplunkUniversal Forwarders8.1.11affected
SplunkUniversal Forwarders8.2 < 8.2.7.1affected

Weaknesses

  • CWE-409: CWE-409

ADP Enrichment

CVE Program Container

Additional References

References