Description

In Splunk Enterprise versions 9.3.0, 9.2.3, and 9.1.6, a low-privileged user that does not hold the "admin" or "power" Splunk roles could view images on the machine that runs Splunk Enterprise by using the PDF export feature in Splunk classic dashboards. The images on the machine could be exposed by exporting the dashboard as a PDF, using the local image path in the img tag in the source extensible markup language (XML) code for the Splunk classic dashboard.

Related CPE's

a

splunk

splunk

2

References

https://advisory.splunk.com/advisories/SVD-2024-1004

Vendor Advisory

https://research.splunk.com/application/7464e2dc-98a5-4af9-87a1-fa6d5a256fa6/

Vendor Advisory

Weaknesses

[email protected]

Secondary
CWE-284

[email protected]

Primary
NVD-CWE-noinfo

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

4.3 · Medium

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2024-10-14T15:15:11.850Z

1 year ago

Last modified

2024-10-16T20:20:57.687Z

1 year ago