CVE-2024-23678 - Exploiting Unsafe Path Handling and Deserialization in Splunk Enterprise for Windows
Splunk Enterprise is a big name when it comes to searching, monitoring, and analyzing machine-generated data. However, sometimes even the most adopted software can have
CVE-2023-32707 - How Low-Privileged Users Can Become Admins in Splunk with a Simple Web Request
Splunk is a big name when it comes to searching, monitoring, and analyzing machine-generated data. But in early 2023, a serious security flaw was found
CVE-2022-43570 - Exploiting Splunk Enterprise – How XXE Injection Lets Attackers Leak Data
Splunk Enterprise is one of the most popular platforms for searching, monitoring, and analyzing machine-generated big data. But sometimes, security vulnerabilities pop up even in
CVE-2022-43562 - Understanding and Exploiting the Splunk Host Header Vulnerability
Splunk Enterprise is used by thousands of organizations to collect, index, and analyze machine-generated data. In late 2022, a critical vulnerability was discovered and tracked
CVE-2022-43568 - Exploiting Reflected XSS in Splunk Enterprise Using JSON and output_mode=radio
Splunk Enterprise is a popular tool used by thousands of companies worldwide to search, analyze, and visualize data. But even widely used, respected software can
Episode
00:00:00
00:00:00