Forum

CVE-2023-40595 - Splunk Enterprise

Antworten
MITs Forum@forum
4.867 Beiträge
MITS Forenbenutzer
#1 · 30. August 2023, 0:00
Zitat

In Splunk Enterprise versions lower than 8.2.12, 9.0.6, and 9.1.1, an attacker can execute a specially crafted query that they can then use to serialize untrusted data. The attacker can use the query to execute arbitrary code.

References
https://advisory.splunk.com/advisories/SVD-2023-0804

Anklicken für Daumen nach unten.0Anklicken für Daumen nach oben.0
Antworten