CVE-2023-22932

Name of the Vulnerable Software and Affected Versions Splunk Enterprise versions prior to 9.0.4

Description The issue allows for Cross-Site Scripting (XSS) through the error message in a Base64-encoded image in a View. This affects instances with Splunk Web enabled.

Recommendations For versions prior to 9.0.4, update to version 9.0.4 or later to resolve the issue. As a temporary workaround, consider disabling Splunk Web until a patch is available. Restrict access to views that utilize Base64-encoded images to minimize the risk of exploitation.