Vulnerabilities > CVE-2024-36989 - Unspecified vulnerability in Splunk Cloud and Splunk

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

NONE

network

low complexity

splunk

NVD

Published: 2024-07-01

Updated: 2024-10-10

Summary

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312.200, a low-privileged user that does not hold the admin or power Splunk roles could create notifications in Splunk Web Bulletin Messages that all users on the instance receive.

Vulnerable Configurations

Part	Description	Count
Application	Splunk Splunk Splunk 9.0.0 Splunk Splunk 9.0.3 Splunk Splunk 9.0.4 Splunk Splunk 9.0.6 Splunk Splunk 9.0.7 Splunk Splunk 9.1.0 Splunk Splunk 9.1.0.1 Splunk Splunk 9.1.0.2 Splunk Splunk 9.1.1 Splunk Splunk 9.1.2 Splunk Splunk 9.1.3 Splunk Splunk * Splunk Cloud 9.1.2312.100	13

References

https://advisory.splunk.com/advisories/SVD-2024-0709
https://research.splunk.com/application/4b7f368f-4322-47f8-8363-2c466f0b7030