Splunk

Splunk

184 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2024-36987

  • EPSS 0.6%
  • Veröffentlicht 01.07.2024 17:15:07
  • Zuletzt bearbeitet 21.11.2024 09:22:58

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312.200, an authenticated, low-privileged user who does not hold the admin or power Splunk roles could upload a file with an arbitrary extensio...

4.3

CVE-2024-36989

  • EPSS 0.28%
  • Veröffentlicht 01.07.2024 17:15:07
  • Zuletzt bearbeitet 21.11.2024 09:22:59

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312.200, a low-privileged user that does not hold the admin or power Splunk roles could create notifications in Splunk Web Bulletin Messages th...

6.5

CVE-2024-36990

Exploit
  • EPSS 1.14%
  • Veröffentlicht 01.07.2024 17:15:07
  • Zuletzt bearbeitet 21.11.2024 09:22:59

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.2.2403.100, an authenticated, low-privileged user that does not hold the admin or power Splunk roles could send a specially crafted HTTP POST requ...

7.5

CVE-2024-36991

  • EPSS 93.52%
  • Veröffentlicht 01.07.2024 17:15:07
  • Zuletzt bearbeitet 21.11.2024 09:22:59

In Splunk Enterprise on Windows versions below 9.2.2, 9.1.5, and 9.0.10, an attacker could perform a path traversal on the /modules/messaging/ endpoint in Splunk Enterprise on Windows. This vulnerability should only affect Splunk Enterprise on Window...

7.5

CVE-2024-36982

  • EPSS 0.45%
  • Veröffentlicht 01.07.2024 17:15:06
  • Zuletzt bearbeitet 21.11.2024 09:22:58

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312.109 and 9.1.2308.207, an attacker could trigger a null pointer reference on the cluster/config REST endpoint, which could result in a crash...

8.8

CVE-2024-36983

  • EPSS 1.89%
  • Veröffentlicht 01.07.2024 17:15:06
  • Zuletzt bearbeitet 07.03.2025 16:48:11

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312.109 and 9.1.2308.207, an authenticated user could create an external lookup that calls a legacy internal function. The authenticated user c...

8.8

CVE-2024-36984

  • EPSS 3.46%
  • Veröffentlicht 01.07.2024 17:15:06
  • Zuletzt bearbeitet 07.03.2025 16:48:11

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 on Windows, an authenticated user could execute a specially crafted query that they could then use to serialize untrusted data. The attacker could use the query to execute arbitrary code.

8.8

CVE-2024-36985

  • EPSS 48.35%
  • Veröffentlicht 01.07.2024 17:15:06
  • Zuletzt bearbeitet 07.03.2025 16:48:11

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10, a low-privileged user that does not hold the admin or power Splunk roles could cause a Remote Code Execution through an external lookup that references the “splunk_archiver“ application.

5.7

CVE-2024-36986

  • EPSS 0.31%
  • Veröffentlicht 01.07.2024 17:15:06
  • Zuletzt bearbeitet 21.11.2024 09:22:58

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312.200 and 9.1.2308.207, an authenticated user could run risky commands using the permissions of a higher-privileged user to bypass SPL safegu...

7.2

CVE-2024-29945

  • EPSS 0.15%
  • Veröffentlicht 27.03.2024 17:15:54
  • Zuletzt bearbeitet 21.11.2024 09:08:40

In Splunk Enterprise versions below 9.2.1, 9.1.4, and 9.0.9, the software potentially exposes authentication tokens during the token validation process. This exposure happens when either Splunk Enterprise runs in debug mode or the JsonWebToken compon...