Splunk Products Multiple Vulnerabilities
Release Date: 16 Feb 2023
RISK: Medium Risk
TYPE: Servers - Other Servers
Multiple vulnerabilities were identified in Splunk Products. A remote attacker could exploit some of these vulnerabilities to trigger sensitive information disclosure, data manipulation and cross-site scripting on the targeted system.
Impact
- Cross-Site Scripting
- Information Disclosure
- Data Manipulation
System / Technologies affected
- CVE-2023-22932
- Splunk Enterprise: Splunk Web 9.0.0 to 9.0.3
- Splunk Cloud Platform: Splunk Web 9.0.2209 and lower
- CVE-2023-22937
- Splunk Enterprise: Splunk Web 8.1.12 and lower
- Splunk Enterprise: Splunk Web 8.2.0 to 8.2.9
- Splunk Enterprise: Splunk Web 9.0.0 to 9.0.3
- Splunk Cloud Platform: Splunk Web 9.2.2209 and lower
- CVE-2023-22943
- Splunk Add-on Builder: cloudconnectlib 4.1.1 and lower
- Splunk CloudConnect SDK: 3.1.2 and lower
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- https://advisory.splunk.com/advisories/SVD-2023-0213
- https://advisory.splunk.com/advisories/SVD-2023-0207
- https://advisory.splunk.com/advisories/SVD-2023-0202
Vulnerability Identifier
Source
Related Link
- https://www.auscert.org.au/bulletins/ESB-2023.0895
- https://www.auscert.org.au/bulletins/ESB-2023.0894
- https://www.auscert.org.au/bulletins/ESB-2023.0893
- https://advisory.splunk.com/advisories/SVD-2023-0213
- https://advisory.splunk.com/advisories/SVD-2023-0207
- https://advisory.splunk.com/advisories/SVD-2023-0202
沒有留言:
發佈留言