Vulnerabilities > CVE-2023-32707 - Unspecified vulnerability in Splunk and Splunk Cloud Platform

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

splunk

NVD

Published: 2023-06-01

Updated: 2024-04-10

Summary

In versions of Splunk Enterprise below 9.0.5, 8.2.11, and 8.1.14, and Splunk Cloud Platform below version 9.0.2303.100, a low-privileged user who holds a role that has the ‘edit_user’ capability assigned to it can escalate their privileges to that of the admin user by providing specially crafted web requests.

Vulnerable Configurations

Part	Description	Count
Application	Splunk Splunk Splunk Cloud Platform - Splunk Splunk Cloud Platform 8.1.2103 Splunk Splunk Cloud Platform 8.2.2105 Splunk Splunk Cloud Platform 8.2.2106 Splunk Splunk Cloud Platform 8.2.2107 Splunk Splunk Cloud Platform 8.2.2109 Splunk Splunk Cloud Platform 8.2.2111 Splunk Splunk Cloud Platform 8.2.2112 Splunk Splunk Cloud Platform 8.2.2201 Splunk Splunk Cloud Platform 8.2.2202 Splunk Splunk Cloud Platform 8.2.2203 Splunk Splunk Cloud Platform 9.0.2209 Splunk Splunk Cloud Platform 9.0.2209.3 Splunk Splunk 8.1.0 Splunk Splunk 8.1.1 Splunk Splunk 8.1.2 Splunk Splunk 8.1.4 Splunk Splunk 8.1.5 Splunk Splunk 8.1.6 Splunk Splunk 8.1.7 Splunk Splunk 8.1.12 Splunk Splunk 8.1.13 Splunk Splunk 8.2.0 Splunk Splunk 8.2.9 Splunk Splunk 8.2.10 Splunk Splunk 9.0.0 Splunk Splunk 9.0.3 Splunk Splunk 9.0.4	28

Summary

Vulnerable Configurations

References