CVE-2024-23677

Name of the Vulnerable Software and Affected Versions Splunk Enterprise versions prior to 9.0.8

Description The issue is related to the Splunk RapidDiag utility, which discloses server responses from external applications in a log file due to insufficient protection of registration data. This could allow a remote attacker to gain unauthorized access to protected information.

Recommendations For versions prior to 9.0.8, update to version 9.0.8 or later to resolve the issue. As a temporary workaround, consider restricting access to the log files generated by the Splunk RapidDiag utility to minimize the risk of exploitation.