Splunk Security Vulnerabilities and Issues — Splunk CVE List

Lucene search

SplunkSplunk

3 matches found

CVE•added 2024/12/10 6:15 p.m.•94 views

CVE-2024-53246

In Splunk Enterprise versions below 9.3.2, 9.2.4, and 9.1.7 and Splunk Cloud Platform versions below 9.3.2408.101, 9.2.2406.106, 9.2.2403.111, and 9.1.2312.206, an SPL command can potentially disclose sensitive information. The vulnerability requires the exploitation of another vulnerability, such ...

7.5CVSS5.4AI score0.0004EPSS

CVE•added 2024/12/10 6:15 p.m.•71 views

CVE-2024-53245

In Splunk Enterprise versions below 9.3.0, 9.2.4, and 9.1.7 and Splunk Cloud Platform versions below 9.1.2312.206, a low-privileged user that does not hold the “admin“ or “power“ Splunk roles, that has a username with the same name as a role with read access to dashboards, could see the dashboard n...

4.3CVSS3.9AI score0.00059EPSS

CVE•added 2024/12/10 6:15 p.m.•57 views

CVE-2024-53244

In Splunk Enterprise versions below 9.3.2, 9.2.4, and 9.1.7 and Splunk Cloud Platform versions below 9.2.2406.107, 9.2.2403.109, and 9.1.2312.206, a low-privileged user that does not hold the “admin“ or “power“ Splunk roles could run a saved search with a risky command using the permissions of a hi...

5.7CVSS5.8AI score0.00063EPSS