Lucene search
PRIOn knowledge basePRION:CVE-2023-46214HistoryNov 16, 2023 - 9:15 p.m.
Remote code execution
2023-11-1621:15:00
PRIOn knowledge base
www.prio-n.com
7
remote code execution
splunk enterprise
xslt
security vulnerability
In Splunk Enterprise versions below 9.0.7 and 9.1.2, Splunk Enterprise does not safely sanitize extensible stylesheet language transformations (XSLT) that users supply. This means that an attacker can upload malicious XSLT which can result in remote code execution on the Splunk Enterprise instance.
Related
metasploit
metasploit
Splunk Authenticated XSLT Upload RCE
2023-11-28 14:40:05
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up: Dec. 15, 2023
2023-12-15 21:04:18
Metasploit 2023 Annual Wrap-Up: Dec. 29, 2023
2023-12-29 19:38:15
packetstorm
packetstorm
Splunk XSLT Upload Remote Code Execution
2023-12-12 00:00:00
zdt
zdt
Splunk XSLT Upload Remote Code Execution Exploit
2023-12-12 00:00:00
cve
cve
CVE-2023-46214
2023-11-16 21:15:08
nessus
nessus
Splunk Enterprise 9.0.0 < 9.0.7, 9.1.0 < 9.1.2 (SVD-2023-1104)
2023-11-16 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2023-46214
2023-11-16 21:15:08