4 matches found
CVE-2023-4571
In Splunk IT Service Intelligence ITSI versions below below 4.13.3, 4.15.3, or 4.17.1, a malicious actor can inject American National Standards Institute ANSI escape codes into Splunk ITSI log files that, when a vulnerable terminal application reads them, can run malicious code in the vulnerable...
Code injection
In Splunk IT Service Intelligence ITSI versions below below 4.13.3, 4.15.3, or 4.17.1, a malicious actor can inject American National Standards Institute ANSI escape codes into Splunk ITSI log files that, when a vulnerable terminal application reads them, can run malicious code in the vulnerable...
CVE-2023-4571
CVE-2023-4571 affects Splunk IT Service Intelligence (ITSI) prior to 4.13.3, 4.15.3, and 4.17.1. An attacker could inject ANSI escape codes into ITSI log files, which, when read by a terminal application that translates these codes, can cause code execution in the vulnerable application. The expl...
CVE-2023-4571 Unauthenticated Log Injection in Splunk IT Service Intelligence (ITSI)
In Splunk IT Service Intelligence ITSI versions below below 4.13.3, 4.15.3, or 4.17.1, a malicious actor can inject American National Standards Institute ANSI escape codes into Splunk ITSI log files that, when a vulnerable terminal application reads them, can run malicious code in the vulnerable...