In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312.200 and 9.1.2308.207, a low-privileged user that does not hold the admin or power Splunk roles could craft a malicious payload through a View that could result in execution of unauthorized JavaScript code in the browser of a user. The “url” parameter of the Dashboard element does not have proper input validation to reject invalid URLs, which could lead to a Persistent Cross-site Scripting (XSS) exploit.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://advisory.splunk.com/advisories/SVD-2024-0712 |
History
Wed, 21 Aug 2024 15:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Splunk
Splunk splunk Splunk splunk Cloud Platform |
|
CPEs | cpe:2.3:a:splunk:splunk:*:*:*:*:enterprise:*:*:* cpe:2.3:a:splunk:splunk_cloud_platform:*:*:*:*:*:*:*:* |
|
Vendors & Products |
Splunk
Splunk splunk Splunk splunk Cloud Platform |
MITRE
Status: PUBLISHED
Assigner: Splunk
Published: 2024-07-01T16:30:51.507Z
Updated: 2024-12-10T18:00:59.387Z
Reserved: 2024-05-30T16:36:21.001Z
Link: CVE-2024-36992
Vulnrichment
Updated: 2024-08-02T03:43:50.532Z
NVD
Status : Modified
Published: 2024-07-01T17:15:08.077
Modified: 2024-11-21T09:22:59.493
Link: CVE-2024-36992
Redhat
No data.