Question 1

What is CVE-2022-43572 — CVE-2022-43572?

Accepted Answer

In Splunk Enterprise versions below 8.2.9, 8.1.12, and 9.0.2, sending a malformed file through the Splunk-to-Splunk (S2S) or HTTP Event Collector (HEC) protocols to an indexer results in a blockage or denial-of-service preventing further indexing.

Question 2

What is the authoritative source for CVE-2022-43572?

Accepted Answer

CVE-2022-43572 (CVE-2022-43572) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVSS	7.5 ()
Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS	0.77% probability of exploitation · percentile 50.6% · 2026-06-19T12:03:05Z
Last modified	2026-06-17

CVE-2022-43572CVE-2022-43572

Description

Scoring