CVE-2024-36994
Persistent Cross-site Scripting (XSS) in Dashboard Elements
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312.200 and 9.1.2308.207, a low-privileged user that does not hold the admin or power Splunk roles could craft a malicious payload through a View and Splunk Web Bulletin Messages that could result in execution of unauthorized JavaScript code in the browser of a user.
En las versiones de Splunk Enterprise inferiores a 9.2.2, 9.1.5 y 9.0.10 y en las versiones de Splunk Cloud Platform inferiores a 9.1.2312.200 y 9.1.2308.207, un usuario con pocos privilegios que no tenga las funciones de administrador o poder de Splunk podría crear un payload malicioso a través de una vista y mensajes de boletines web de Splunk que podrían resultar en la ejecución de código JavaScript no autorizado en el navegador de un usuario.
CVSS Scores
SSVC
- Decision:Track
Timeline
- 2024-05-30 CVE Reserved
- 2024-07-01 CVE Published
- 2024-08-03 EPSS Updated
- 2024-10-30 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CAPEC
References (2)
URL | Tag | Source |
---|---|---|
https://advisory.splunk.com/advisories/SVD-2024-0714 | ||
https://research.splunk.com/application/b0a67520-ae82-4cf6-b04e-9f6cce56830d |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Splunk Search vendor "Splunk" | Splunk Enterprise Search vendor "Splunk" for product "Splunk Enterprise" | >= 9.2.0 < 9.2.2 Search vendor "Splunk" for product "Splunk Enterprise" and version " >= 9.2.0 < 9.2.2" | en |
Affected
| ||||||
Splunk Search vendor "Splunk" | Splunk Enterprise Search vendor "Splunk" for product "Splunk Enterprise" | >= 9.1.0 < 9.1.5 Search vendor "Splunk" for product "Splunk Enterprise" and version " >= 9.1.0 < 9.1.5" | en |
Affected
| ||||||
Splunk Search vendor "Splunk" | Splunk Enterprise Search vendor "Splunk" for product "Splunk Enterprise" | >= 9.0.0 < 9.0.10 Search vendor "Splunk" for product "Splunk Enterprise" and version " >= 9.0.0 < 9.0.10" | en |
Affected
| ||||||
Splunk Search vendor "Splunk" | Splunk Cloud Platform Search vendor "Splunk" for product "Splunk Cloud Platform" | >= 9.1.2312.0 < 9.1.2312.200 Search vendor "Splunk" for product "Splunk Cloud Platform" and version " >= 9.1.2312.0 < 9.1.2312.200" | en |
Affected
| ||||||
Splunk Search vendor "Splunk" | Splunk Cloud Platform Search vendor "Splunk" for product "Splunk Cloud Platform" | >= 9.1.2308.0 < 9.1.2308.207 Search vendor "Splunk" for product "Splunk Cloud Platform" and version " >= 9.1.2308.0 < 9.1.2308.207" | en |
Affected
|