Vulnerabilities > Splunk > High

DATE CVE VULNERABILITY TITLE RISK
2024-12-10 CVE-2024-53246 Cleartext Transmission of Sensitive Information vulnerability in Splunk and Splunk Cloud Platform
In Splunk Enterprise versions below 9.3.2, 9.2.4, and 9.1.7 and Splunk Cloud Platform versions below 9.3.2408.101, 9.2.2406.106, 9.2.2403.111, and 9.1.2312.206, an SPL command can potentially disclose sensitive information.
network
low complexity
splunk CWE-319
7.5
2024-10-14 CVE-2024-45731 Path Traversal vulnerability in Splunk
In Splunk Enterprise for Windows versions below 9.3.1, 9.2.3, and 9.1.6, a low-privileged user that does not hold the "admin" or "power" Splunk roles could write a file to the Windows system root directory, which has a default location in the Windows System32 folder, when Splunk Enterprise for Windows is installed on a separate drive.
network
low complexity
splunk CWE-22
8.0
2024-10-14 CVE-2024-45733 Deserialization of Untrusted Data vulnerability in Splunk
In Splunk Enterprise for Windows versions below 9.2.3 and 9.1.6, a low-privileged user that does not hold the "admin" or "power" Splunk roles could perform a Remote Code Execution (RCE) due to an insecure session storage configuration.
network
low complexity
splunk CWE-502
8.8
2024-07-01 CVE-2024-36982 NULL Pointer Dereference vulnerability in Splunk Cloud and Splunk
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312.109 and 9.1.2308.207, an attacker could trigger a null pointer reference on the cluster/config REST endpoint, which could result in a crash of the Splunk daemon.
network
low complexity
splunk CWE-476
7.5
2024-07-01 CVE-2024-36983 Command Injection vulnerability in Splunk and Splunk Cloud Platform
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312.109 and 9.1.2308.207, an authenticated user could create an external lookup that calls a legacy internal function.
network
low complexity
splunk CWE-77
8.8
2024-07-01 CVE-2024-36984 Deserialization of Untrusted Data vulnerability in Splunk
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 on Windows, an authenticated user could execute a specially crafted query that they could then use to serialize untrusted data.
network
low complexity
splunk CWE-502
8.8
2024-07-01 CVE-2024-36985 Unspecified vulnerability in Splunk
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10, a low-privileged user that does not hold the admin or power Splunk roles could cause a Remote Code Execution through an external lookup that references the “splunk_archiver“ application.
network
low complexity
splunk
8.8
2024-07-01 CVE-2024-36991 Path Traversal vulnerability in Splunk
In Splunk Enterprise on Windows versions below 9.2.2, 9.1.5, and 9.0.10, an attacker could perform a path traversal on the /modules/messaging/ endpoint in Splunk Enterprise on Windows.
network
low complexity
splunk CWE-22
7.5
2024-07-01 CVE-2024-36997 Cross-site Scripting vulnerability in Splunk and Splunk Cloud Platform
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312, an admin user could store and execute arbitrary JavaScript code in the browser context of another Splunk user through the conf-web/settings REST endpoint.
network
low complexity
splunk CWE-79
8.1
2024-03-27 CVE-2024-29945 Information Exposure Through Log Files vulnerability in Splunk
In Splunk Enterprise versions below 9.2.1, 9.1.4, and 9.0.9, the software potentially exposes authentication tokens during the token validation process.
network
low complexity
splunk CWE-532
7.2