Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-46231 | 1 Splunk | 1 Add-on Builder | 2024-11-21 | N/A | 6.8 MEDIUM |
| In Splunk Add-on Builder versions below 4.1.4, the application writes user session tokens to its internal log files when you visit the Splunk Add-on Builder or when you build or edit a custom app or add-on. | |||||
| CVE-2023-46230 | 1 Splunk | 1 Add-on Builder | 2024-11-21 | N/A | 8.2 HIGH |
| In Splunk Add-on Builder versions below 4.1.4, the app writes sensitive information to internal log files. | |||||
| CVE-2023-22943 | 1 Splunk | 2 Add-on Builder, Cloudconnect Software Development Kit | 2024-11-21 | N/A | 4.8 MEDIUM |
| In Splunk Add-on Builder (AoB) versions below 4.1.2 and the Splunk CloudConnect SDK versions below 3.1.3, requests to third-party APIs through the REST API Modular Input incorrectly revert to using HTTP to connect after a failure to connect over HTTPS occurs. | |||||