CVE-2024-23678 - Exploiting Unsafe Path Handling and Deserialization in Splunk Enterprise for Windows
Splunk Enterprise is a big name when it comes to searching, monitoring, and analyzing machine-generated data. However, sometimes even the most adopted software can have
CVE-2023-32707 - How Low-Privileged Users Can Become Admins in Splunk with a Simple Web Request
Splunk is a big name when it comes to searching, monitoring, and analyzing machine-generated data. But in early 2023, a serious security flaw was found
CVE-2022-43564 - Exploiting Denial of Service in Splunk Enterprise via Malicious Search Macros
Splunk is widely known for its log analysis and SIEM capabilities across enterprises. But like any powerful tool, it can have vulnerabilities if not kept
CVE-2022-43568 - Exploiting Reflected XSS in Splunk Enterprise Using JSON and output_mode=radio
Splunk Enterprise is a popular tool used by thousands of companies worldwide to search, analyze, and visualize data. But even widely used, respected software can
CVE-2022-43566 - Privilege Escalation in Splunk’s Analytics Workspace Explained
Splunk is a giant in the log analysis and SIEM (Security Information and Event Management) world. Security teams rely on its powerful search and reporting
Episode
00:00:00
00:00:00