Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2023/02/16 12:0 a.m.38 views

Splunk Enterprise 8.1 < 8.1.13, 8.2.0 < 8.2.10, 9.0.0 < 9.0.4 (SVD-2023-0204)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2023-0204 advisory. - In Splunk Enterprise versions below 8.1.13, 8.2.10, and 9.0.4, the pivot' search processing language SPL command lets a searc...

8CVSS7.8AI score0.01121EPSS
Exploits1References2
NVD
NVD
added 2023/02/14 6:15 p.m.27 views

CVE-2023-22934

In Splunk Enterprise versions below 8.1.13, 8.2.10, and 9.0.4, the ‘pivot’ search processing language SPL command lets a search bypass SPL safeguards for risky commands using a saved search job. The vulnerability requires an authenticated user to craft the saved job and a higher privileged user t...

8CVSS7.5AI score0.01121EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/02/14 5:22 p.m.17 views

CVE-2023-22934 SPL Command Safeguards Bypass via the ‘pivot’ SPL Command in Splunk Enterprise

In Splunk Enterprise versions below 8.1.13, 8.2.10, and 9.0.4, the ‘pivot’ search processing language SPL command lets a search bypass SPL safeguards for risky commands using a saved search job. The vulnerability requires an authenticated user to craft the saved job and a higher privileged user t...

7.3CVSS7AI score0.01121EPSS
Exploits1References2
CVE
CVE
added 2023/02/14 5:22 p.m.160 views

CVE-2023-22934

Splunk Enterprise is affected in versions prior to 8.1.13, 8.2.10, and 9.0.4. The vulnerability stems from the pivot SPL command bypassing safeguards for risky commands when used with a saved search job, requiring an authenticated user to craft the saved job and a higher-privileged user to initia...

8CVSS7.5AI score0.01121EPSS
Exploits1References2Affected Software2
Cvelist
Cvelist
added 2023/02/14 5:22 p.m.26 views

CVE-2023-22934 SPL Command Safeguards Bypass via the ‘pivot’ SPL Command in Splunk Enterprise

In Splunk Enterprise versions below 8.1.13, 8.2.10, and 9.0.4, the ‘pivot’ search processing language SPL command lets a search bypass SPL safeguards for risky commands using a saved search job. The vulnerability requires an authenticated user to craft the saved job and a higher privileged user t...

7.3CVSS8.1AI score0.01121EPSS
Exploits1References2
Rows per page
Query Builder