June Third Party Package Updates in Splunk Universal Forwarders

Advisory ID: SVD-2023-0614

CVE ID:  Multiple

Published: 2023-06-01

Last Update: 2023-06-01

Description

Splunk remedied common vulnerabilities and exposures (CVEs) in Third Party Packages in versions 8.1.14, 8.2.11, and 9.0.5 of Splunk Universal Forwarder, including the following:

CVEPackageRemediationSeverity
CVE-2022-40303libxml2PatchedHigh
CVE-2022-40304libxml2PatchedHigh
CVE-2023-0286OpenSSL 1.0.2Upgraded to 1.0.2zgHigh
CVE-2023-0215OpenSSL 1.0.2Upgraded to 1.0.2zgHigh
CVE-2022-4304OpenSSL 1.0.2Upgraded to 1.0.2zgMedium
CVE-2023-27538curlUpgraded to 8.0.1Medium
CVE-2023-27537curlUpgraded to 8.0.1Medium
CVE-2023-27536curlUpgraded to 8.0.1Critical
CVE-2023-27535curlUpgraded to 8.0.1High
CVE-2023-27534curlUpgraded to 8.0.1High
CVE-2023-27533curlUpgraded to 8.0.1High
CVE-2023-23916curlUpgraded to 8.0.1Medium
CVE-2023-23915curlUpgraded to 8.0.1Medium
CVE-2023-23914curlUpgraded to 8.0.1Critical
CVE-2022-43552curlUpgraded to 8.0.1Medium
CVE-2022-43551curlUpgraded to 8.0.1High
CVE-2022-42916curlUpgraded to 8.0.1High
CVE-2022-42915curlUpgraded to 8.0.1Critical
CVE-2022-35260curlUpgraded to 8.0.1Medium
CVE-2022-32221curlUpgraded to 8.0.1Critical
CVE-2022-35252curlUpgraded to 8.0.1Low
CVE-2022-32208curlUpgraded to 8.0.1Medium
CVE-2022-32207curlUpgraded to 8.0.1Critical
CVE-2022-32206curlUpgraded to 8.0.1Medium
CVE-2022-32205curlUpgraded to 8.0.1Medium
CVE-2022-30115curlUpgraded to 8.0.1Medium
CVE-2022-27782curlUpgraded to 8.0.1High
CVE-2022-27781curlUpgraded to 8.0.1High
CVE-2022-27780curlUpgraded to 8.0.1High
CVE-2022-27779curlUpgraded to 8.0.1Medium
CVE-2022-27778curlUpgraded to 8.0.1High
CVE-2022-27776curlUpgraded to 8.0.1Medium
CVE-2022-27775curlUpgraded to 8.0.1High
CVE-2022-27774curlUpgraded to 8.0.1Medium
CVE-2022-22576curlUpgraded to 8.0.1High
CVE-2021-22947curlUpgraded to 8.0.1Medium
CVE-2021-22946curlUpgraded to 8.0.1High
CVE-2021-22945curlUpgraded to 8.0.1Critical
CVE-2021-22926curlUpgraded to 8.0.1High
CVE-2021-22925curlUpgraded to 8.0.1Medium
CVE-2021-22924curlUpgraded to 8.0.1Low
CVE-2021-22923curlUpgraded to 8.0.1Medium
CVE-2021-22922curlUpgraded to 8.0.1Medium
CVE-2021-22901curlUpgraded to 8.0.1High
CVE-2021-22898curlUpgraded to 8.0.1Low
CVE-2021-22897curlUpgraded to 8.0.1Medium
CVE-2021-22890curlUpgraded to 8.0.1Low
CVE-2021-22876curlUpgraded to 8.0.1Medium
CVE-2020-8286curlUpgraded to 8.0.1High
CVE-2020-8285curlUpgraded to 8.0.1High
CVE-2020-8284curlUpgraded to 8.0.1Low
CVE-2020-8231curlUpgraded to 8.0.1High
CVE-2020-8177curlUpgraded to 8.0.1High
CVE-2020-8169curlUpgraded to 8.0.1High
CVE-2022-36227libarchiveUpgraded to 3.6.2Critical
CVE-2021-31566libarchiveUpgraded to 3.6.2High
CVE-2021-36976libarchiveUpgraded to 3.6.2Medium
CVE-2021-3520lz4Upgraded to 1.9.4Critical
CVE-2022-35737SQLiteUpgraded to 3.41.2High
CVE-2018-25032zlibApplied patchHigh
CVE-2022-37434zlibApplied patchCritical

Solution

For Splunk Universal Forwarder, upgrade versions to 8.1.14, 8.2.11, 9.0.5, or higher.

Product Status

ProductVersionComponentAffected VersionFix Version
Universal Forwarders8.1-8.1.13 and Lower8.1.14
Universal Forwarders8.2-8.2.0 to 8.2.108.2.11
Universal Forwarders9.0-9.0.0 to 9.0.49.0.5

Severity

For the CVEs in this list, Splunk adopted the national vulnerability database (NVD) CVSS rating to align with industry standards.