In Splunk Enterprise versions below 8.1.13, 8.2.10, and 9.0.4, the ‘sendemail’ REST API endpoint lets any authenticated user send an email as the Splunk instance. The endpoint is now restricted to the ‘splunk-system-user’ account on the local instance.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://advisory.splunk.com/advisories/SVD-2023-0208 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: Splunk
Published: 2023-02-14T17:24:46.893Z
Updated: 2024-12-10T18:00:25.548Z
Reserved: 2023-01-10T21:39:55.584Z
Link: CVE-2023-22938
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-02-14T18:15:12.617
Modified: 2024-11-21T07:45:40.823
Link: CVE-2023-22938
Redhat
No data.