Vulnerabilities > CVE-2024-23675 - Incorrect Authorization vulnerability in Splunk Cloud and Splunk

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

splunk

CWE-863

NVD

Published: 2024-01-22

Updated: 2024-04-10

Summary

In Splunk Enterprise versions below 9.0.8 and 9.1.3, Splunk app key value store (KV Store) improperly handles permissions for users that use the REST application programming interface (API). This can potentially result in the deletion of KV Store collections.

Vulnerable Configurations

Part	Description	Count
Application	Splunk Splunk Cloud 9.0.2208 Splunk Cloud 9.1.2308 Splunk Cloud 9.1.2308.200 Splunk Splunk 9.0.0 Splunk Splunk 9.0.3 Splunk Splunk 9.0.4 Splunk Splunk 9.0.6 Splunk Splunk 9.0.7 Splunk Splunk 9.1.0 Splunk Splunk 9.1.0.1 Splunk Splunk 9.1.0.2 Splunk Splunk 9.1.1 Splunk Splunk 9.1.2	13

Common Weakness Enumeration (CWE)

CWE-863 - Incorrect Authorization

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References