CVE-2024-36987 Insecure File Upload in the indexing/preview REST endpoint

🗓️ 01 Jul 2024 16:30:36Reported by SplunkType

Insecure file upload via Splunk REST endpoint in versions below 9.2.2, 9.1.5, and 9.0.1

Reporter	Title	Published	Views	Family All 12
BDU FSTEC	The vulnerability of the Upload Data module in the Splunk Web interface of the Splunk Enterprise operational analytics platform allows a hacker to write arbitrary files.	15 Jul 202400:00	–	bdu_fstec
Circl	CVE-2024-36987	15 Jan 202517:55	–	circl
CNNVD	Splunk Cloud Platform和Splunk Enterprise 安全漏洞	1 Jul 202400:00	–	cnnvd
CNVD	Splunk Enterprise File Upload Vulnerability	5 Jul 202400:00	–	cnvd
CVE	CVE-2024-36987	1 Jul 202416:30	–	cve
EUVD	EUVD-2024-36375	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in Splunk	2 Jul 202413:15	–	ncsc
NVD	CVE-2024-36987	1 Jul 202417:15	–	nvd
OSV	CVE-2024-36987	1 Jul 202417:15	–	osv
Positive Technologies	PT-2024-4753 · Splunk · Splunk Cloud Platform +1	30 May 202400:00	–	ptsecurity

[
  {
    "product": "Splunk Enterprise",
    "vendor": "Splunk",
    "versions": [
      {
        "version": "9.2",
        "status": "affected",
        "versionType": "custom",
        "lessThan": "9.2.2"
      },
      {
        "version": "9.1",
        "status": "affected",
        "versionType": "custom",
        "lessThan": "9.1.5"
      },
      {
        "version": "9.0",
        "status": "affected",
        "versionType": "custom",
        "lessThan": "9.0.10"
      }
    ]
  },
  {
    "product": "Splunk Cloud Platform",
    "vendor": "Splunk",
    "versions": [
      {
        "version": "9.1.2312",
        "status": "affected",
        "versionType": "custom",
        "lessThan": "9.1.2312.200"
      }
    ]
  }
]

Source	Link
advisory	www.advisory.splunk.com/advisories/SVD-2024-0707

28 Feb 2025 11:03Current

CVSS 3.14.3

EPSS0.00459