Lucene search
+L

5 matches found

NVD
NVD
added 2023/06/01 5:15 p.m.21 views

CVE-2023-32706

On Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, an unauthenticated attacker can send specially-crafted messages to the XML parser within SAML authentication to cause a denial of service in the Splunk daemon...

7.7CVSS7.5AI score0.00602EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/06/01 4:34 p.m.16 views

CVE-2023-32706 Denial Of Service due to Untrusted XML Tag in XML Parser within SAML Authentication

On Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, an unauthenticated attacker can send specially-crafted messages to the XML parser within SAML authentication to cause a denial of service in the Splunk daemon...

7.7CVSS7.4AI score0.00602EPSS
Exploits0References1
CVE
CVE
added 2023/06/01 4:34 p.m.171 views

CVE-2023-32706

Summary: CVE-2023-32706 affects Splunk Enterprise versions prior to 9.0.5, 8.2.11, and 8.1.14. An unauthenticated attacker can send specially crafted messages to the XML parser in SAML authentication, triggering a Denial of Service (DoS) in the Splunk daemon. What’s affected: Splunk Enterprise on...

7.7CVSS6.7AI score0.00602EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2023/06/01 4:34 p.m.18 views

CVE-2023-32706 Denial Of Service due to Untrusted XML Tag in XML Parser within SAML Authentication

On Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, an unauthenticated attacker can send specially-crafted messages to the XML parser within SAML authentication to cause a denial of service in the Splunk daemon...

7.7CVSS7.7AI score0.00602EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/06/01 12:0 a.m.44 views

Splunk Enterprise 8.1.0 < 8.1.14, 8.2.0 < 8.2.11, 9.0.0 < 9.0.5 (SVD-2023-0601)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2023-0601 advisory. - On Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, an unauthenticated attacker can send specially-crafted message...

7.7CVSS6.7AI score0.00602EPSS
Exploits0References2
Rows per page
Query Builder