Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2023-32711

In Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, a Splunk dashboard view lets a low-privileged user exploit a vulnerability in the Bootstrap web framework (CVE-2019-8331) and build a stored cross-site scripting (XSS) payload.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.8%
CVSS Severity
CVSS v3 Score 5.4
Products affected by CVE-2023-32711
  • Splunk » Splunk » Version: 8.1.0
    cpe:2.3:a:splunk:splunk:8.1.0
  • Splunk » Splunk » Version: 8.1.1
    cpe:2.3:a:splunk:splunk:8.1.1
  • Splunk » Splunk » Version: 8.1.12
    cpe:2.3:a:splunk:splunk:8.1.12
  • Splunk » Splunk » Version: 8.1.13
    cpe:2.3:a:splunk:splunk:8.1.13
  • Splunk » Splunk » Version: 8.1.2
    cpe:2.3:a:splunk:splunk:8.1.2
  • Splunk » Splunk » Version: 8.1.4
    cpe:2.3:a:splunk:splunk:8.1.4
  • Splunk » Splunk » Version: 8.1.5
    cpe:2.3:a:splunk:splunk:8.1.5
  • Splunk » Splunk » Version: 8.1.6
    cpe:2.3:a:splunk:splunk:8.1.6
  • Splunk » Splunk » Version: 8.1.7
    cpe:2.3:a:splunk:splunk:8.1.7
  • Splunk » Splunk » Version: 8.2.0
    cpe:2.3:a:splunk:splunk:8.2.0
  • Splunk » Splunk » Version: 8.2.10
    cpe:2.3:a:splunk:splunk:8.2.10
  • Splunk » Splunk » Version: 8.2.9
    cpe:2.3:a:splunk:splunk:8.2.9
  • Splunk » Splunk » Version: 9.0.0
    cpe:2.3:a:splunk:splunk:9.0.0
  • Splunk » Splunk » Version: 9.0.3
    cpe:2.3:a:splunk:splunk:9.0.3
  • Splunk » Splunk » Version: 9.0.4
    cpe:2.3:a:splunk:splunk:9.0.4


Products
Pricing
Contact Us

Shodan ® - All rights reserved