CVE-2023-46231 - How a Logging Snafu in Splunk Add-on Builder Leaked User Session Tokens
Splunk is a powerhouse when it comes to ingesting and analyzing machine data, but like all complex systems, its add-ons and plugins need careful security
CVE-2023-46230 - Sensitive Data Leak in Splunk Add-on Builder (Fixed in 4.1.4)
In late 2023, a critical vulnerability was discovered and assigned as CVE-2023-46230 in the Splunk Add-on Builder. This vulnerability allows leakage of sensitive information, such
CVE-2024-23677 - Understanding and Exploiting the Splunk RapidDiag Log Disclosure Vulnerability
Splunk Enterprise is a leading data platform for searching, monitoring, and analyzing machine-generated data. However, in versions before 9..8, a security issue known as
CVE-2024-23676 - Disclosure of Restricted Metrics via “mrollup” in Splunk — Simple Exploit & Deep Dive
Summary:
A new vulnerability, CVE-2024-23676, hits Splunk users hard. It lets a low-privileged user peek at metrics data from indexes they are supposed not to
CVE-2024-23678 - Exploiting Unsafe Path Handling and Deserialization in Splunk Enterprise for Windows
Splunk Enterprise is a big name when it comes to searching, monitoring, and analyzing machine-generated data. However, sometimes even the most adopted software can have
Episode
00:00:00
00:00:00