In Splunk Enterprise versions below 9.0.7 and 9.1.2, ineffective escaping in the “Show syntax Highlighted” feature can result in the execution of unauthorized code in a user’s web browser.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Splunk
Published: 2023-11-16T20:15:46.739Z
Updated: 2024-12-10T18:00:39.349Z
Reserved: 2023-10-18T17:02:51.235Z
Link: CVE-2023-46213
Vulnrichment
Updated: 2024-08-02T20:37:40.176Z
NVD
Status : Modified
Published: 2023-11-16T21:15:08.390
Modified: 2024-11-21T08:28:05.000
Link: CVE-2023-46213
Redhat
No data.