CVE-2022-37438— Information disclosure via the dashboard drilldown in Splunk Enterprise

CVSS 2.6 · Low EPSS 0.34% · P57 Updated Feb 25, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2022-37438

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Information disclosure via the dashboard drilldown in Splunk Enterprise

Source: NVD (National Vulnerability Database)

Vulnerability Description

In Splunk Enterprise versions in the following table, an authenticated user can craft a dashboard that could potentially leak information (for example, username, email, and real name) about Splunk users, when visited by another user through the drilldown component. The vulnerability requires user access to create and share dashboards using Splunk Web.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:N

Source: NVD (National Vulnerability Database)

Vulnerability Type

信息暴露

Source: NVD (National Vulnerability Database)

Vulnerability Title

Splunk 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Splunk是美国Splunk公司的一套数据收集分析软件。该软件主要用于收集、索引和分析及其所产生的数据，包括所有IT系统和基础结构（物理、虚拟机和云）生成的数据。 Splunk Enterprise 8.1.10及之前版本、8.2.0至8.2.7版本和9.0.0版本存在安全漏洞，该漏洞源于经过认证的用户可以制作仪表盘，当其他用户通过drilldown组件访问时，可能会泄露Splunk用户的信息（例如，用户名、电子邮件和真实姓名）。该漏洞需要用户访问才能使用Splunk Web来创建和共享仪表盘。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Splunk	Splunk Enterprise	9.0 ~ 9.0.1	-
Splunk	Splunk Cloud Platform	unspecified ~ 9.0.2205	-

II. Public POCs for CVE-2022-37438

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2022-37438

请登录查看更多情报信息。

https://www.splunk.com/en_us/product-security/announcements/svd-2022-0802.htmlx_refsource_CONFIRM
https://research.splunk.com/application/f844c3f6-fd99-43a2-ba24-93e35fe84be6x_refsource_CONFIRM
https://nvd.nist.gov/vuln/detail/CVE-2022-37438

Same Patch Batch · Splunk · 2022-08-16 · 3 CVEs total

CVE-2022-37437	7.4 HIGH	Ingest Actions UI in Splunk Enterprise 9.0.0 disabled TLS certificate validation
CVE-2022-37439	5.5 MEDIUM	Malformed ZIP file crashes Universal Forwarders and Splunk Enterprise through file monitor

IV. Related Vulnerabilities

Same product: Splunk Enterprise

Same vendor: Splunk

Same weakness: CWE-200

V. Comments for CVE-2022-37438

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2022-37438— Information disclosure via the dashboard drilldown in Splunk Enterprise

I. Basic Information for CVE-2022-37438

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2022-37438

III. Intelligence Information for CVE-2022-37438

Same Patch Batch · Splunk · 2022-08-16 · 3 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2022-37438

Leave a comment