Lucene search
K

5 matches found

Circl
Circl
added 2023/08/30 8:12 p.m.6 views

CVE-2023-40596

creationtimestamp| type| source ---|---|--- 2023-08-30 20:12:22+00:00| seen| https://t.me/cibsecurity/69463 2023-09-01 12:26:52+00:00| seen| https://t.me/truesecator/4795...

8.8CVSS7.3AI score0.00156EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/08/30 4:19 p.m.17 views

CVE-2023-40596 Splunk Enterprise on Windows Privilege Escalation due to Insecure OPENSSLDIR Build Definition Reference in DLL

In Splunk Enterprise versions earlier than 8.2.12, 9.0.6, and 9.1.1, a dynamic link library DLL that ships with Splunk Enterprise references an insecure path for the OPENSSLDIR build definition. An attacker can abuse this reference and subsequently install malicious code to achieve privilege...

7CVSS7.3AI score0.00156EPSS
Exploits0References1
CVE
CVE
added 2023/08/30 4:19 p.m.159 views

CVE-2023-40596

Summary of CVE-2023-40596 (Splunk Enterprise on Windows) A DLL shipped with Splunk Enterprise references an insecure OPENSSLDIR build definition path, enabling an attacker to install malicious code and achieve privilege escalation on Windows. Affected versions are Splunk Enterprise prior to 8.2.1...

8.8CVSS8.1AI score0.00156EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/08/30 4:19 p.m.32 views

CVE-2023-40596 Splunk Enterprise on Windows Privilege Escalation due to Insecure OPENSSLDIR Build Definition Reference in DLL

In Splunk Enterprise versions earlier than 8.2.12, 9.0.6, and 9.1.1, a dynamic link library DLL that ships with Splunk Enterprise references an insecure path for the OPENSSLDIR build definition. An attacker can abuse this reference and subsequently install malicious code to achieve privilege...

7CVSS9.1AI score0.00156EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/08/30 12:0 a.m.27 views

Splunk Enterprise 8.2.0 < 8.2.12, 9.0.0 < 9.0.6, 9.1.0 < 9.1.1 (SVD-2023-0805)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2023-0805 advisory. - In Splunk Enterprise versions earlier than 8.2.12, 9.0.6, and 9.1.1, a dynamic link library DLL that ships with Splunk...

8.8CVSS8.1AI score0.00156EPSS
Exploits0References2
Rows per page
Query Builder