Unrated severityNVD Advisory· Published Nov 4, 2022· Updated May 5, 2025
Remote Code Execution via the Splunk Secure Gateway application Mobile Alerts feature
CVE-2022-43567
Description
In Splunk Enterprise versions below 8.2.9, 8.1.12, and 9.0.2, an authenticated user can run arbitrary operating system commands remotely through the use of specially crafted requests to the mobile alerts feature in the Splunk Secure Gateway app.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3below 8.2.9, 8.1.12, and 9.0.2+ 1 more
- (no CPE)range: below 8.2.9, 8.1.12, and 9.0.2
- (no CPE)range: 8.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.