Every CVE whose affected-product data names Splunk Add-on Builder, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2023-46230 — CVSS 8.2 (high): In Splunk Add-on Builder versions below 4.1.4, the app writes sensitive information to internal log files.
CVE-2023-46231 — CVSS 6.8 (medium): In Splunk Add-on Builder versions below 4.1.4, the application writes user session tokens to its internal log files when you visit the…
CVE-2023-22943 — CVSS 4.8 (medium): In Splunk Add-on Builder (AoB) versions below 4.1.2 and the Splunk CloudConnect SDK versions below 3.1.3, requests to third-party APIs…