Medium5.5Splunk
Splunk Enterprise: In Splunk Enterprise and Universal Forwarder versions in the following table, indexing a specially crafted ZIP file u…
CVE-2022-37439 Published Aug 16, 2022Updated by vendor Jun 17, 2026
CVE-2022-37439
Affected products & platforms
SplunkSplunk EnterpriseUniversal Forwarder
Summary
In Splunk Enterprise and Universal Forwarder versions in the following table, indexing a specially crafted ZIP file using the file monitoring input can result in a crash of the application. Attempts to restart the application would result in a crash and would require manually removing the malformed file.
Mitigation
Mitigation steps weren't captured by the parser for this advisory — this is a parsing gap, not a statement that no fix exists. Read the vendor advisory below for the authoritative guidance.
Official advisory · medium-confidence parse· fetched 4 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.