PT-2024-19253 · Splunk · Splunk Enterprise Security
Eric Lamothe
·
Published
2024-01-09
·
Updated
2024-04-10
·
CVE-2024-22165
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Splunk Enterprise Security (ES) versions prior to 7.1.2
Description
The issue allows an attacker to create a malformed Investigation, leading to a denial of service (DoS) that prevents the generation and rendering of the Investigations manager until the malformed investigation is deleted. This requires an authenticated session and access to create an Investigation, affecting the availability of the Investigations manager and rendering the Investigations functionality unusable for most users.
Recommendations
For versions prior to 7.1.2, update to version 7.1.2 or later to resolve the issue.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Splunk Enterprise Security