Lucene search

[email protected]NVD:CVE-2023-40597

HistoryAug 30, 2023 - 5:15 p.m.

CVE-2023-40597

2023-08-3017:15:10

CWE-36

CWE-22

[email protected]

web.nvd.nist.gov

splunk enterprise

absolute path traversal

vulnerability

versions

8.2.12

9.0.6

9.1.1

execute

arbitrary code

separate disk

CVSS3

8.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

AI Score

8.2

Confidence

High

EPSS

Percentile

15.6%

JSON

In Splunk Enterprise versions lower than 8.2.12, 9.0.6, and 9.1.1, an attacker can exploit an absolute path traversal to execute arbitrary code that is located on a separate disk.

Affected configurations

Nvd

Node

splunksplunkRange8.2.0–8.2.12enterprise

splunksplunkRange9.0.0–9.0.6enterprise

splunksplunkMatch9.1.0enterprise

splunksplunk_cloud_platformRange≤9.0.2305.100

VendorProductVersionCPE
splunksplunk*cpe:2.3:a:splunk:splunk:*:*:*:*:enterprise:*:*:*
splunksplunk9.1.0cpe:2.3:a:splunk:splunk:9.1.0:*:*:*:enterprise:*:*:*
splunksplunk_cloud_platform*cpe:2.3:a:splunk:splunk_cloud_platform:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
splunk	splunk	*	cpe:2.3:a:splunk:splunk:::::enterprise:::*
splunk	splunk	9.1.0	cpe:2.3:a:splunk:splunk:9.1.0::::enterprise:::
splunk	splunk_cloud_platform	*	cpe:2.3:a:splunk:splunk_cloud_platform::::::::

References

advisory.splunk.com/advisories/SVD-2023-0806

research.splunk.com/application/356bd3fe-f59b-4f64-baa1-51495411b7ad/

CVSS3

8.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

AI Score

8.2

Confidence

High

EPSS

Percentile

15.6%

JSON

Related for NVD:CVE-2023-40597

cvelist1 prion1 nessus1 cve1