Splunk’s response to OpenSSL’s CVE-2022-3602 and CVE-2022-3786

Advisory ID: SVD-2022-1114

CVE ID:  Multiple

Published: 2022-11-01

Last Update: 2022-11-01

Description

OpenSSL released two High vulnerabilities, CVE-2022-3602 and CVE-2022-3786, impacting OpenSSL 3.0 on Nov 1. For more information, see OpenSSL’s advisory. Splunk products and services are not impacted by CVE-2022-3602 or CVE-2022-3786. If OpenSSL 3.0 is present in your environment’s local operating system, we recommend updating per OpenSSL’s advisory.

Solution

NA, Splunk products and services are not impacted by CVE-2022-3602 or CVE-2022-3786.

Product Status

ProductVersionComponentAffected VersionFix Version
Splunk EnterpriseNot affected
Universal ForwardersNot affected
Splunk Cloud PlatformNot affected
Splunk Observatibility PlatformNot affected
SOAR CloudNot affected
SOARNot affected
SOAR Automation BrokerNot affected
Enterprise SecurityNot affected
Splunk Security EssentialsNot affected
IT Service IntelligenceNot affected
Splunk UBANot affected
Data Stream ProcessorNot affected
Splunk Addon for Active DirectoryNot affected
Splunk Addon for Add-on for InfrastructureNot affected
Splunk Addon for Add-on for Microsoft ExchangeNot affected
Splunk Addon for Add-on for VMwareNot affected
Splunk Addon for Amazon Kinesis FirehoseNot affected
Splunk Addon for Amazon Web ServicesNot affected
Splunk Addon for Apache Web ServerNot affected
Splunk Addon for Bit9 Carbon BlackNot affected
Splunk Addon for Blue Coat ProxySGNot affected
Splunk Addon for BMC RemedyNot affected
Splunk Addon for BoxNot affected
Splunk Addon for BromiumNot affected
Splunk Addon for Check Point OPSEC LEANot affected
Splunk Addon for Cisco ASANot affected
Splunk Addon for Cisco ESANot affected
Splunk Addon for Cisco FireSIGHTNot affected
Splunk Addon for Cisco Identity ServicesNot affected
Splunk Addon for Cisco UCSNot affected
Splunk Addon for Citrix NetScalerNot affected
Splunk Addon for CyberArkNot affected
Splunk Addon for F5 BIG-IPNot affected
Splunk Addon for Forcepoint Web SecurityNot affected
Splunk Addon for Google Cloud PlatformNot affected
Splunk Addon for HAProxyNot affected
Splunk Addon for IBM WebSphere Application ServerNot affected
Splunk Addon for Imperva SecureSphere WAFNot affected
Splunk Addon for InfobloxNot affected
Splunk Addon for ISC BINDNot affected
Splunk Addon for ISC DHCPNot affected
Splunk Addon for Java Management ExtensionsNot affected
Splunk Addon for JBossNot affected
Splunk Addon for JuniperNot affected
Splunk Addon for KafkaNot affected
Splunk Addon for LinuxNot affected
Splunk Addon for McAfeeNot affected
Splunk Addon for McAfee Web GatewayNot affected
Splunk Addon for Microsoft Cloud ServicesNot affected
Splunk Addon for Microsoft Hyper-VNot affected
Splunk Addon for Microsoft IISNot affected
Splunk Addon for Microsoft Office 365Not affected
Splunk Addon for Microsoft SQL ServerNot affected
Splunk Addon for Microsoft WindowsNot affected
Splunk Addon for MySQLNot affected
Splunk Addon for Nagios CoreNot affected
Splunk Addon for NGINXNot affected
Splunk Addon for OPCNot affected
Splunk Addon for Oracle DatabaseNot affected
Splunk Addon for OSSECNot affected
Splunk Addon for RSA DLPNot affected
Splunk Addon for RSA SecurIDNot affected
Splunk Addon for SalesforceNot affected
Splunk Addon for ServiceNowNot affected
Splunk Addon for SophosNot affected
Splunk Addon for Squid ProxyNot affected
Splunk Addon for Stream Addon for Wire DataNot affected
Splunk Addon for Symantec DLPNot affected
Splunk Addon for Symantec Endpoint ProtectionNot affected
Splunk Addon for TomcatNot affected
Splunk Addon for Unix and LinuxNot affected
Splunk Addon for Websense DLPNot affected
Splunk Addon for ZeekNot affected
Splunk App for AWSNot affected
Splunk App for Common Information Model (CIM)Not affected
Splunk App for DB ConnectNot affected
Splunk App for DB Connect - Older Unsupported versionsNot affected
Splunk App for Info SecNot affected
Splunk App for InfoSec App for SplunkNot affected
Splunk App for InfrastructureNot affected
Splunk App for IT Essentials LearnNot affected
Splunk App for IT Essentials WorkNot affected
Splunk App for Machine Learning Toolkit (MLTK) and Python for Scientific Computing (PSC)Not affected
Splunk App for Microsoft ExchangeNot affected
Splunk App for NetApp Data ONTAPNot affected
Splunk App for PCI ComplianceNot affected
Splunk App for Security EssentialsNot affected
Splunk App for Splunk Product GuidanceNot affected
Splunk App for StreamNot affected
Splunk App for Unix and LinuxNot affected
Splunk App for VMwareNot affected
Splunk App for WindowsNot affected
Splunk App for Windows InfrastructureNot affected
Splunk Add-on BuilderNot affected
Splunk AppInspectNot affected
Splunk SDKsNot affected
Splunk Logging Library for JavaNot affected
Security Analytics for AWSNot affected
Splunk Add-on for VMware MetricsNot affected
Splunk App for Content PacksNot affected
Splunk App for Infrastructure (SAI)Not affected
Splunk App for MintNot affected
Splunk Application Performance MonitoringNot affected
Splunk AssistNot affected
Splunk Augmented RealityNot affected
Splunk Cloud Data Manager (SCDM)Not affected
Splunk Cloud Developer EditionNot affected
Splunk Connect for KafkaNot affected
Splunk Connect for KubernetesNot affected
Splunk Connect for Kubernetes-OpenTelemetryNot affected
Splunk Connect for SNMPNot affected
Splunk Connect for SyslogNot affected
Splunk DB TA LARNot affected
Splunk Edge HubNot affected
Splunk Enterprise Amazon Machine Image (AMI)Not affected
Splunk Enterprise Docker ContainerNot affected
Splunk Infrastructure MonitoringNot affected
Splunk Log ObserverNot affected
Splunk Mint Android SDKNot affected
Splunk Mint IOS SDKNot affected
Splunk Mint Management consoleNot affected
Splunk MobileNot affected
Splunk Network Performance MonitoringNot affected
Splunk On-Call/Victor Ops/SSANot affected
Splunk OVA for VMwareNot affected
Splunk OVA for VMWare MetricsNot affected
Splunk ProfilingNot affected
Splunk Real User MonitoringNot affected
Splunk Secure GatewayNot affected
Behavioral AnalyticsNot affected
Splunk Stream ForwarderNot affected
Splunk SyntheticsNot affected
Splunk TVNot affected
Splunk UBA OVA SoftwareNot affected
Splunk VMWare OVA for ITSINot affected

If a Splunk Supported product or service is not listed above, the product or service is not affected by CVE-2022-3602 or CVE-2022-3786.

Mitigations and Workarounds

None

Detection

None

Severity

High