How severe is CVE-2022-32158?

This vulnerability has a severity rating of CRITICAL with a CVSS score of 10 out of 10.

What type of vulnerability is CVE-2022-32158?

This is classified as CWE-284, which is a common weakness in software security.

CVE-2022-32158

CRITICAL Year: 2022

CVSS v3 Score

10.0

Critical

CVSS v2 Score

7.5

High

Weakness Type

CWE-284

View all →

Vulnerability Description

Splunk Enterprise deployment servers in versions before 8.1.10.1, 8.2.6.1, and 9.0 let clients deploy forwarder bundles to other deployment clients through the deployment server. An attacker that compromised a Universal Forwarder endpoint could use the vulnerability to execute arbitrary code on all other Universal Forwarder endpoints subscribed to the deployment server.

CVE-2015-2692

CRITICAL

CVSS:10.0(Critical)

AdBlock before 2.21 allows remote attackers to block arbitrary resources on arbitrary websites and to disable arbitrary blocking filters.

CWE-2842015

CVE-2016-1038

CRITICAL

CVSS:10.0(Critical)

Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allow attackers...

CWE-2842016

CVE-2016-1041

CRITICAL

CVSS:10.0(Critical)

CWE-2842016

CVE-2016-1044

CRITICAL

CVSS:10.0(Critical)

CWE-2842016

CVE-2016-8938

CRITICAL

CVSS:10.0(Critical)

IBM UrbanCode Deploy could allow a user to execute code using a specially crafted file upload that would replace code on the server. This code could be executed on the UCD agent machines that host cus...

CWE-2842016

CVE-2017-7928

CRITICAL

CVSS:10.0(Critical)

An Improper Access Control issue was discovered in Schweitzer Engineering Laboratories (SEL) SEL-3620 and SEL-3622 Security Gateway Versions R202 and, R203, R203-V1, R203-V2 and, R204, R204-V1. The de...

CWE-2842017

CVE-2022-32158

Vulnerability Description

Related Vulnerabilities

CVE-2015-2692

CVE-2016-1038

CVE-2016-1041

CVE-2016-1044

CVE-2016-8938

CVE-2017-7928