Lucene search
K

6 matches found

Packet Storm
Packet Storm
added 2023/12/12 12:0 a.m.396 views

Splunk XSLT Upload Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Splunk Authenticated XSLT Upload RCE', 'Description' = %q This Metasploit module exploits a Remote Code Execution RCE vulnerability in Splunk...

8.8CVSS7.4AI score0.89066EPSS
Exploits4
Circl
Circl
added 2023/11/19 7:37 a.m.10 views

CVE-2023-46214

creationtimestamp| type| source ---|---|--- 2023-11-19 07:37:50+00:00| published-proof-of-concept| https://t.me/proxybar/1832 2023-11-19 12:58:41+00:00| published-proof-of-concept| https://t.me/RalfHackerChannel/1418 2023-11-19 14:57:34+00:00| published-proof-of-concept| https://t.me/apsecurity/2...

8.8CVSS7.3AI score0.89066EPSS
Exploits4References20
GithubExploit
GithubExploit
added 2023/11/18 10:20 p.m.27 views

Exploit for XML Injection (aka Blind XPath Injection) in Splunk Cloud

Splunk RCE - PoC Proof of concept exploit for CVE-2023-46214...

8.8CVSS7.3AI score0.89066EPSS
Exploits4
CVE
CVE
added 2023/11/16 8:15 p.m.250 views

CVE-2023-46214

CVE-2023-46214 describes a remote code execution risk in Splunk Enterprise caused by unsafe sanitization of user-supplied XSLT. Affected versions are Splunk Enterprise 9.0.x before 9.0.7 and 9.1.x before 9.1.2, where uploading crafted XSLT can lead to code execution on the target. The vulnerabili...

8.8CVSS8.5AI score0.89066EPSS
Exploits4References3Affected Software2
Cvelist
Cvelist
added 2023/11/16 8:15 p.m.43 views

CVE-2023-46214 Remote code execution (RCE) in Splunk Enterprise through Insecure XML Parsing

In Splunk Enterprise versions below 9.0.7 and 9.1.2, Splunk Enterprise does not safely sanitize extensible stylesheet language transformations XSLT that users supply. This means that an attacker can upload malicious XSLT which can result in remote code execution on the Splunk Enterprise instance...

8CVSS9.3AI score0.89066EPSS
Exploits4References3
Vulnrichment
Vulnrichment
added 2023/11/16 8:15 p.m.18 views

CVE-2023-46214 Remote code execution (RCE) in Splunk Enterprise through Insecure XML Parsing

In Splunk Enterprise versions below 9.0.7 and 9.1.2, Splunk Enterprise does not safely sanitize extensible stylesheet language transformations XSLT that users supply. This means that an attacker can upload malicious XSLT which can result in remote code execution on the Splunk Enterprise instance...

8CVSS7.7AI score0.89066EPSS
Exploits4References3
Rows per page
Query Builder