CVE-2022-48308
First published: Thu Feb 16 2023(Updated: )
It was discovered that the sls-logging was not verifying hostnames in TLS certificates due to a misuse of the javax.net.ssl.SSLSocketFactory API. A malicious attacker in a privileged network position could abuse this to perform a man-in-the-middle attack. A successful man-in-the-middle attack would allow them to intercept, read, or modify network communications to and from the affected service.
Credit: cve-coordination@palantir.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Palantir Sls-logging | <9.51.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2022-48308?
CVE-2022-48308 is a vulnerability in the sls-logging software that allows a malicious attacker to perform a man-in-the-middle attack by misusing the javax.net.ssl.SSLSocketFactory API.
How severe is CVE-2022-48308?
CVE-2022-48308 has a severity keyword of medium and a severity value of 3.7.
How does CVE-2022-48308 affect the Palantir Sls-logging?
CVE-2022-48308 affects Palantir Sls-logging version up to exclusive 9.51.0.
How can CVE-2022-48308 be exploited?
CVE-2022-48308 can be exploited by a malicious attacker in a privileged network position who can abuse the vulnerability to perform a man-in-the-middle attack.
Where can I find more information about CVE-2022-48308?
You can find more information about CVE-2022-48308 in Palantir's security bulletin: https://github.com/palantir/security-bulletins/blob/main/PLTRSEC-2022-14.md
- collector/nvd-index
- agent/weakness
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/last-modified-date
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- agent/source
- vendor/palantir
- canonical/palantir sls-logging