Lucene search

[email protected]NVD:CVE-2023-40595

HistoryAug 30, 2023 - 5:15 p.m.

CVE-2023-40595

2023-08-3017:15:10

CWE-502

[email protected]

web.nvd.nist.gov

splunk enterprise

code execution

crafted query

arbitrary code

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.3%

JSON

In Splunk Enterprise versions lower than 8.2.12, 9.0.6, and 9.1.1, an attacker can execute a specially crafted query that they can then use to serialize untrusted data. The attacker can use the query to execute arbitrary code.

Affected configurations

NVD

Node

splunksplunkRange8.2.0–8.2.12enterprise

splunksplunkRange9.0.0–9.0.6enterprise

splunksplunkMatch9.1.0enterprise

splunksplunk_cloud_platformRange≤9.0.2305.100

References

advisory.splunk.com/advisories/SVD-2023-0804

research.splunk.com/application/d1d8fda6-874a-400f-82cf-dcbb59d8e4db/

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.3%

JSON

Related for NVD:CVE-2023-40595

cvelist1 prion1 cve1 nessus1