← volver
CVE-2024-36995

Low-privileged user could create experimental items

CVSS 4.3 MEDIUMEPSS 0.2%CWE-862
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312.200 and 9.1.2308.207, a low-privileged user that does not hold the admin or power Splunk roles could create experimental items.
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Productos afectados
Splunk · Splunk Cloud PlatformSplunk · Splunk Enterprise

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://advisory.splunk.com/advisories/SVD-2024-0715https://research.splunk.com/application/84afda04-0cd6-466b-869e-70d6407d0a34