Vulnerabilities > Splunk > IT Service Intelligence > High

DATE CVE VULNERABILITY TITLE RISK
2023-08-30 CVE-2023-4571 Improper Encoding or Escaping of Output vulnerability in Splunk IT Service Intelligence
In Splunk IT Service Intelligence (ITSI) versions below 4.13.3 or 4.15.3, a malicious actor can inject American National Standards Institute (ANSI) escape codes into Splunk ITSI log files that, when a vulnerable terminal application reads them, can run malicious code in the vulnerable application.
local
low complexity
splunk CWE-116
8.6