5 matches found
CVE-2023-40596
creationtimestamp| type| source ---|---|--- 2023-08-30 20:12:22+00:00| seen| https://t.me/cibsecurity/69463 2023-09-01 12:26:52+00:00| seen| https://t.me/truesecator/4795...
CVE-2023-40596 Splunk Enterprise on Windows Privilege Escalation due to Insecure OPENSSLDIR Build Definition Reference in DLL
In Splunk Enterprise versions earlier than 8.2.12, 9.0.6, and 9.1.1, a dynamic link library DLL that ships with Splunk Enterprise references an insecure path for the OPENSSLDIR build definition. An attacker can abuse this reference and subsequently install malicious code to achieve privilege...
CVE-2023-40596
Summary of CVE-2023-40596 (Splunk Enterprise on Windows) A DLL shipped with Splunk Enterprise references an insecure OPENSSLDIR build definition path, enabling an attacker to install malicious code and achieve privilege escalation on Windows. Affected versions are Splunk Enterprise prior to 8.2.1...
CVE-2023-40596 Splunk Enterprise on Windows Privilege Escalation due to Insecure OPENSSLDIR Build Definition Reference in DLL
In Splunk Enterprise versions earlier than 8.2.12, 9.0.6, and 9.1.1, a dynamic link library DLL that ships with Splunk Enterprise references an insecure path for the OPENSSLDIR build definition. An attacker can abuse this reference and subsequently install malicious code to achieve privilege...
Splunk Enterprise 8.2.0 < 8.2.12, 9.0.0 < 9.0.6, 9.1.0 < 9.1.1 (SVD-2023-0805)
The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2023-0805 advisory. - In Splunk Enterprise versions earlier than 8.2.12, 9.0.6, and 9.1.1, a dynamic link library DLL that ships with Splunk...