Splunk: >> Splunk >> 9.1.0.1 Security Vulnerabilities
In Splunk Enterprise versions below 8.2.12, 9.0.6, and 9.1.1, an attacker can create an external lookup that calls a legacy internal function. The attacker can use this internal function to insert code into the Splunk platform installation directory. From there, a user can execute arbitrary code on the Splunk platform Instance.
CVSS Score
8.5
EPSS Score
0.001
Published
2023-08-30
Page 6