Filtered by vendor Splunk Subscriptions
Filtered by product Add-on Builder Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-46231 1 Splunk 1 Add-on Builder 2024-12-10 8.8 High
In Splunk Add-on Builder versions below 4.1.4, the application writes user session tokens to its internal log files when you visit the Splunk Add-on Builder or when you build or edit a custom app or add-on.
CVE-2023-22943 1 Splunk 2 Add-on Builder, Cloudconnect Software Development Kit 2024-12-10 4.8 Medium
In Splunk Add-on Builder (AoB) versions below 4.1.2 and the Splunk CloudConnect SDK versions below 3.1.3, requests to third-party APIs through the REST API Modular Input incorrectly revert to using HTTP to connect after a failure to connect over HTTPS occurs.
CVE-2023-46230 1 Splunk 1 Add-on Builder 2024-12-10 8.2 High
In Splunk Add-on Builder versions below 4.1.4, the app writes sensitive information to internal log files.