CVE-2024-23676

EPSS 0.2%
Published 22.01.2024 21:15:10
Last modified 21.11.2024 08:58:09
Source prodsec@splunk.com
Teams watchlist Login
Open Login

In Splunk versions below 9.0.8 and 9.1.3, the “mrollup” SPL command lets a low-privileged user view metrics on an index that they do not have permission to view. This vulnerability requires user interaction from a high-privileged user to exploit.

Affected products Warnungen 0 Metrics 3 CWE 1 References 5

Data is provided by the National Vulnerability Database (NVD)

Splunk ≫ Cloud Version < 9.1.2308.200

Splunk ≫ Splunk SwEditionenterprise Version >= 9.0.0 < 9.0.8

Splunk ≫ Splunk SwEditionenterprise Version >= 9.1.0 < 9.1.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.2%	0.427

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	3.5	2.1	1.4	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
prodsec@splunk.com	4.6	2.1	2.5	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://research.splunk.com/application/ee69374a-d27e-4136-adac-956a96ff60fd/

Vendor Advisory

https://advisory.splunk.com/advisories/SVD-2024-0106

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2024-23676

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-23676

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-23676

EUVD