In Splunk Enterprise versions below 9.0.7 and 9.1.2, ineffective escaping in the “Show syntax Highlighted” feature can result in the execution of unauthorized code in a user’s web browser.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Splunk

Published: 2023-11-16T20:15:46.739Z

Updated: 2024-12-10T18:00:39.349Z

Reserved: 2023-10-18T17:02:51.235Z

Link: CVE-2023-46213

cve-icon Vulnrichment

Updated: 2024-08-02T20:37:40.176Z

cve-icon NVD

Status : Modified

Published: 2023-11-16T21:15:08.390

Modified: 2024-11-21T08:28:05.000

Link: CVE-2023-46213

cve-icon Redhat

No data.