CVE-2024-23675: Splunk App Key Value Store (KV Store) Improper Handling of Permissions Leads to KV Store Collection Deletion
First published: Mon Jan 22 2024(Updated: )
In Splunk Enterprise versions below 9.0.8 and 9.1.3, Splunk app key value store (KV Store) improperly handles permissions for users that use the REST application programming interface (API). This can potentially result in the deletion of KV Store collections.
Credit: prodsec@splunk.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Splunk Cloud | <9.1.2312.100 | |
| Splunk Splunk | >=9.0.0<9.0.8 | |
| Splunk Splunk | >=9.1.0<9.1.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/title
- agent/type
- agent/description
- agent/first-publish-date
- agent/severity
- agent/author
- agent/event
- agent/references
- collector/mitre-cve
- source/MITRE
- collector/epss-latest
- source/FIRST
- agent/epss
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/weakness
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- vendor/splunk
- canonical/splunk cloud
- canonical/splunk splunk
- version/splunk splunk/9.0.0
- version/splunk splunk/9.1.0