Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2024-23675

In Splunk Enterprise versions below 9.0.8 and 9.1.3, Splunk app key value store (KV Store) improperly handles permissions for users that use the REST application programming interface (API). This can potentially result in the deletion of KV Store collections.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 26.6%
CVSS Severity
CVSS v3 Score 6.5
Products affected by CVE-2024-23675
  • Splunk » Cloud » Version: N/A
    cpe:2.3:a:splunk:cloud:-
  • Splunk » Cloud » Version: 9.0.2208
    cpe:2.3:a:splunk:cloud:9.0.2208
  • Splunk » Cloud » Version: 9.1.2308
    cpe:2.3:a:splunk:cloud:9.1.2308
  • Splunk » Cloud » Version: 9.1.2308.200
    cpe:2.3:a:splunk:cloud:9.1.2308.200
  • Splunk » Cloud » Version: 9.1.2308.207
    cpe:2.3:a:splunk:cloud:9.1.2308.207
  • Splunk » Cloud » Version: 9.1.2312
    cpe:2.3:a:splunk:cloud:9.1.2312
  • Splunk » Splunk » Version: 9.0.0
    cpe:2.3:a:splunk:splunk:9.0.0
  • Splunk » Splunk » Version: 9.0.3
    cpe:2.3:a:splunk:splunk:9.0.3
  • Splunk » Splunk » Version: 9.0.4
    cpe:2.3:a:splunk:splunk:9.0.4
  • Splunk » Splunk » Version: 9.0.6
    cpe:2.3:a:splunk:splunk:9.0.6
  • Splunk » Splunk » Version: 9.0.7
    cpe:2.3:a:splunk:splunk:9.0.7
  • Splunk » Splunk » Version: 9.1.0
    cpe:2.3:a:splunk:splunk:9.1.0
  • Splunk » Splunk » Version: 9.1.0.1
    cpe:2.3:a:splunk:splunk:9.1.0.1
  • Splunk » Splunk » Version: 9.1.0.2
    cpe:2.3:a:splunk:splunk:9.1.0.2
  • Splunk » Splunk » Version: 9.1.1
    cpe:2.3:a:splunk:splunk:9.1.1
  • Splunk » Splunk » Version: 9.1.2
    cpe:2.3:a:splunk:splunk:9.1.2


Products
Pricing
Contact Us

Shodan ® - All rights reserved