In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312, an admin user could store and execute arbitrary JavaScript code in the browser context of another Splunk user through the conf-web/settings REST endpoint. This could potentially cause a persistent cross-site scripting (XSS) exploit.
Metrics
Affected Vendors & Products
References
History
Tue, 15 Oct 2024 19:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-75 |
Mon, 30 Sep 2024 18:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Splunk
Splunk splunk Splunk splunk Cloud Platform |
|
CPEs | cpe:2.3:a:splunk:splunk:*:*:*:*:enterprise:*:*:* cpe:2.3:a:splunk:splunk_cloud_platform:*:*:*:*:*:*:*:* |
|
Vendors & Products |
Splunk
Splunk splunk Splunk splunk Cloud Platform |
|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: Splunk
Published: 2024-07-01T16:57:47.904Z
Updated: 2024-12-10T18:00:23.660Z
Reserved: 2024-05-30T16:36:21.002Z
Link: CVE-2024-36997
Vulnrichment
Updated: 2024-08-02T03:43:50.623Z
NVD
Status : Awaiting Analysis
Published: 2024-07-01T17:15:09.143
Modified: 2024-11-21T09:23:00.207
Link: CVE-2024-36997
Redhat
No data.