CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-41738

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00148EPSS

Exploits0References2

Vulnrichment•added 2024/10/14 5:3 p.m.•16 views

CVE-2024-45736 Improperly Formatted ‘INGEST_EVAL’ Parameter Crashes Splunk Daemon

In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6 and Splunk Cloud Platform versions below 9.2.2403.107, 9.1.2312.204, and 9.1.2312.111, a low-privileged user that does not hold the "admin" or "power" Splunk roles could craft a search query with an improperly formatted "INGESTEVAL"...

6.5CVSS6.9AI score0.00148EPSS

Exploits0References2

Positive Technologies•added 2024/10/14 12:0 a.m.•1 views

PT-2024-7417 · Splunk · Splunk Cloud Platform +1

Name of the Vulnerable Software and Affected Versions: Splunk Enterprise versions prior to 9.3.1 Splunk Enterprise versions prior to 9.2.3 Splunk Enterprise versions prior to 9.1.6 Splunk Cloud Platform versions prior to 9.2.2403.107 Splunk Cloud Platform versions prior to 9.1.2312.204 Splunk Clo...

6.8CVSS6.8AI score0.00148EPSS

Exploits0References11

Tenable Nessus•added 2024/10/14 12:0 a.m.•25 views

Splunk Enterprise 9.1.0 < 9.1.6, 9.2.0 < 9.2.3, 9.3.0 < 9.3.1 (SVD-2024-1006)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2024-1006 advisory. - In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6 and Splunk Cloud Platform versions below 9.2.2403.107,...

6.5CVSS5.6AI score0.00148EPSS

Exploits0References2

CNVD•added 2024/07/05 12:0 a.m.•6 views

Splunk Enterprise Null Pointer Dereference Vulnerability

Splunk is a suite of data collection and analysis software from Splunk, Inc. in the United States. The software is primarily used to collect, index and analyze and the data it generates, including data generated by all IT systems and infrastructures physical, virtual machines and cloud. Splunk...

7.5CVSS6.7AI score0.00345EPSS

Exploits0References1

Vulnrichment•added 2023/06/01 4:34 p.m.•5 views

CVE-2023-32716 Denial of Service via the 'dump' SPL command

In Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, and Splunk Cloud Platform versions below 9.0.2303.100, an attacker can exploit a vulnerability in the dump SPL command to cause a denial of service by crashing the Splunk daemon...

6.5CVSS6.5AI score0.00252EPSS

Exploits0References2

Tenable Nessus•added 2023/02/16 12:0 a.m.•32 views

Splunk Enterprise 8.1 < 8.1.13, 8.2.0 < 8.2.10, 9.0.0 < 9.0.4 (SVD-2023-0211)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2023-0211 advisory. - In Splunk Enterprise versions below 8.1.13, 8.2.10, and 9.0.4, an improperly-formatted INGESTEVAL' parameter in a Field...

7.5CVSS7.4AI score0.01093EPSS

Exploits0References2

Cvelist•added 2023/02/14 5:22 p.m.•17 views

CVE-2023-22941 Improperly Formatted ‘INGEST_EVAL’ Parameter Crashes Splunk Daemon

In Splunk Enterprise versions below 8.1.13, 8.2.10, and 9.0.4, an improperly-formatted ‘INGESTEVAL’ parameter in a Field Transformation crashes the Splunk daemon splunkd...

6.5CVSS7.7AI score0.01093EPSS

Exploits0References2

Vulnrichment•added 2023/02/14 5:22 p.m.•14 views

CVE-2023-22941 Improperly Formatted ‘INGEST_EVAL’ Parameter Crashes Splunk Daemon

In Splunk Enterprise versions below 8.1.13, 8.2.10, and 9.0.4, an improperly-formatted ‘INGESTEVAL’ parameter in a Field Transformation crashes the Splunk daemon splunkd...

6.5CVSS6.8AI score0.01093EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by