CVE-2022-26070

Published: 2022-05-06T17:15Z

Last Modified: 2024-11-21T06:53Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

When handling a mismatched pre-authentication cookie, the application leaks the internal error message in the response, which contains the Splunk Enterprise local system path. The vulnerability impacts Splunk Enterprise versions before 8.1.0. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt