Vulnerabilidades en Splunk
170 resultadosCVE-2023-22932HIGHPersistent Cross-Site Scripting through a Base64-encoded Image in a View in Splunk EnterpriseEPSS 0.4%CVE-2024-45732HIGHLow-privileged user could run search as nobody in SplunkDeploymentServerConfig appEPSS 0.4%CVE-2026-20240HIGHDenial of Service through coldToFrozen.sh Script in Splunk EnterpriseEPSS 0.4%CVE-2024-23677MEDIUMServer Response Disclosure in RapidDiag Salesforce.com Log FileEPSS 0.4%CVE-2024-36986MEDIUMRisky command safeguards bypass through Search ID query in Analytics WorkspaceEPSS 0.4%CVE-2023-32709MEDIUMLow-privileged User can View Hashed Default Splunk PasswordEPSS 0.4%CVE-2023-46230HIGHSensitive Information Disclosure to Internal Log Files in Splunk Add-on BuilderEPSS 0.4%CVE-2022-37437HIGHIngest Actions UI in Splunk Enterprise 9.0.0 disabled TLS certificate validationEPSS 0.4%CVE-2023-22936MEDIUMAuthenticated Blind Server Side Request Forgery via the ‘search_listener’ Search Parameter in Splunk EnterpriseEPSS 0.4%CVE-2024-23675MEDIUMSplunk App Key Value Store (KV Store) Improper Handling of Permissions Leads to KV Store Collection DeletionEPSS 0.4%CVE-2024-36993MEDIUMPersistent Cross-site Scripting (XSS) in Web BulletinEPSS 0.4%CVE-2025-20320MEDIUMDenial of Service (DoS) through “User Interface - Views“ configuration page in Splunk EnterpriseEPSS 0.4%CVE-2026-20144MEDIUMSensitive Information Disclosure in ''_internal'' index in Splunk EnterpriseEPSS 0.4%CVE-2023-22931MEDIUM‘createrss’ External Search Command Overwrites Existing RSS Feeds in Splunk EnterpriseEPSS 0.4%CVE-2023-32717MEDIUMRole-based Access Control (RBAC) Bypass on '/services/indexing/preview' REST Endpoint Can Overwrite Search ResultsEPSS 0.4%CVE-2025-20227MEDIUMInformation Disclosure through external content warning modal dialog box bypass in Splunk Enterprise Dashboard StudioEPSS 0.4%CVE-2023-22938MEDIUMPermissions Validation Failure in the ‘sendemail’ REST API Endpoint in Splunk EnterpriseEPSS 0.4%CVE-2025-20389MEDIUMImproper Input Validation in "label" column field in Splunk Secure Gateway AppEPSS 0.4%CVE-2024-45740MEDIUMPersistent Cross-Site Scripting (XSS) through Scheduled Views on Splunk EnterpriseEPSS 0.4%CVE-2023-40594MEDIUMDenial of Service (DoS) via the ‘printf’ Search FunctionEPSS 0.4%