CVE-2024-29946

🗓️ 27 Mar 2024 16:15:59Reported by SplunkType

Splunk Enterprise Dashboard Studio app vulnerability below versions 9.2.1, 9.1.4, 9.0.

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2024-29946	1 Apr 202415:01	–	circl
CNNVD	Splunk 命令注入漏洞	27 Mar 202400:00	–	cnnvd
Cvelist	CVE-2024-29946 Risky command safeguards bypass in Dashboard Examples Hub	27 Mar 202416:15	–	cvelist
EUVD	EUVD-2024-26920	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in Splunk	28 Mar 202400:00	–	ncsc
NVD	CVE-2024-29946	27 Mar 202417:15	–	nvd
OSV	CVE-2024-29946	27 Mar 202417:15	–	osv
Positive Technologies	PT-2024-2533 · Splunk · Splunk Enterprise	27 Mar 202400:00	–	ptsecurity
Tenable Nessus	Splunk Enterprise 9.0.0 < 9.0.9, 9.1.0 < 9.1.4, 9.2.0 < 9.2.1 (SVD-2024-0302)	27 Mar 202400:00	–	nessus
Vulnrichment	CVE-2024-29946 Risky command safeguards bypass in Dashboard Examples Hub	27 Mar 202416:15	–	vulnrichment

NVD

Node

splunk splunkRange9.0.0–9.0.9enterprise

splunk splunkRange9.1.0–9.1.4enterprise

splunk splunkRange9.2.0–9.2.1enterprise

[
  {
    "product": "Splunk Enterprise",
    "vendor": "Splunk",
    "versions": [
      {
        "version": "9.2",
        "status": "affected",
        "versionType": "custom",
        "lessThan": "9.2.1"
      },
      {
        "version": "9.1",
        "status": "affected",
        "versionType": "custom",
        "lessThan": "9.1.4"
      },
      {
        "version": "9.0",
        "status": "affected",
        "versionType": "custom",
        "lessThan": "9.0.9"
      }
    ]
  },
  {
    "product": "Splunk Cloud Platform",
    "vendor": "Splunk",
    "versions": [
      {
        "version": "-",
        "status": "affected",
        "versionType": "custom",
        "lessThan": "9.1.2312.104"
      },
      {
        "version": "-",
        "status": "affected",
        "versionType": "custom",
        "lessThan": "9.1.2308.205"
      }
    ]
  }
]

Source	Link
advisory	www.advisory.splunk.com/advisories/SVD-2024-0302
research	www.research.splunk.com/application/1cf58ae1-9177-40b8-a26c-8966040f11ae/

28 Feb 2025 11:03Current

8.1High risk

Vulners AI Score8.1

CVSS 3.18.1

EPSS0.00504

SSVC