The vulnerability in the Splunk Web interface of the Splunk Enterprise operating analysis platform allows a malicious actor to read and write arbitrary files into the system.
The vulnerability of the Splunk Enterprise platform for operational analysis is related to an incorrect restriction on the path name to the restricted directory. Exploiting this vulnerability allows a malicious actor to read and write arbitrary files into the system using a specially created HTTP...