Vulnerabilidades em Splunk
170 resultadosCVE-2024-36996MEDIUMInformation Disclosure of user namesEPSS 0.4%CVE-2023-32711MEDIUMPersistent Cross-Site Scripting (XSS) through a URL Validation Bypass within a Dashboard ViewEPSS 0.4%CVE-2024-45734MEDIUMLow Privilege User can View Images on the Host Machine by using the PDF Export feature in Splunk Classic DashboardEPSS 0.3%CVE-2024-53245LOWInformation Disclosure due to Username Collision with a Role that has the same Name as the UserEPSS 0.3%CVE-2024-45735MEDIUMImproper Access Control for low-privileged user in Splunk Secure Gateway AppEPSS 0.3%CVE-2023-32712HIGHUnauthenticated Log Injection in Splunk EnterpriseEPSS 0.3%CVE-2025-20384MEDIUMUnauthenticated Log Injection in Splunk EnterpriseEPSS 0.3%CVE-2025-20367MEDIUMReflected Cross-site Scripting (XSS) in '/app/search/table' endpoint through the 'dataset.command' parameter on Splunk EnterpriseEPSS 0.3%CVE-2025-20368MEDIUMStored Cross-Site Scripting (XSS) through missing field warning messages in Saved Search and Job Inspector on Splunk EnterpriseEPSS 0.3%CVE-2023-32713HIGHLocal Privilege Escalation via the ‘streamfwd’ program in Splunk App for StreamEPSS 0.3%CVE-2024-23676MEDIUMSensitive Information Disclosure of Index Metrics through “mrollup” SPL CommandEPSS 0.3%CVE-2026-20238MEDIUMImproper Access Control through Role Inheritance in Splunk AI Toolkit appEPSS 0.3%CVE-2023-22943MEDIUMModular Input REST API Requests Connect via HTTP after Certificate Validation Failure in Splunk Add-on Builder and Splunk CloudConnect SDKEPSS 0.3%CVE-2025-20388LOWBlind Server Side Request Forgery (SSRF) through Distributed Search Peers in Splunk EnterpriseEPSS 0.3%CVE-2023-32715MEDIUMSelf Cross-Site Scripting (XSS) on Splunk App for Lookup File EditingEPSS 0.3%CVE-2026-20138MEDIUMSensitive Information Disclosure in "_internal" index in Splunk EnterpriseEPSS 0.3%CVE-2026-20142MEDIUMSensitive Information Disclosure in "_internal" index in Splunk EnterpriseEPSS 0.3%CVE-2025-20325LOWSensitive Information Disclosure in the SHCConfig logging channel in Clustered Deployments in Splunk EnterpriseEPSS 0.3%CVE-2024-36992MEDIUMPersistent Cross-site Scripting (XSS) in Dashboard ElementsEPSS 0.3%CVE-2024-36994MEDIUMPersistent Cross-site Scripting (XSS) in Dashboard ElementsEPSS 0.3%