Cuong Dong

**Name of the Vulnerable Software and Affected Versions** Splunk Enterprise versions prior to 8.2.9 Splunk Enterprise versions prior to 8.1.12 **Description** The issue arises from how the rex search command handles field names, allowing an attacker to bypass SPL safeguards for risky commands. This requires the attacker to phish the victim into initiating a request within their browser, meaning the attacker cannot exploit the issue at will. **Recommendations** For versions prior to 8.2.9, update to version 8.2.9 or later. For versions prior to 8.1.12, update to version 8.1.12 or later.

**Name of the Vulnerable Software and Affected Versions** Splunk Enterprise versions prior to 8.2.9 Splunk Enterprise versions prior to 8.1.12 **Description** The issue arises from how the `tstats` command handles Javascript Object Notation (JSON), allowing an attacker to bypass SPL safeguards for risky commands. This requires the attacker to trick the victim into initiating a request within their browser through phishing. **Recommendations** For versions prior to 8.2.9, update to version 8.2.9 or later. For versions prior to 8.1.12, update to version 8.1.12 or later.