CVE-2024-22165

Опубликовано: 09 янв. 2024

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

In Splunk Enterprise Security (ES) versions lower than 7.1.2, an attacker can create a malformed Investigation to perform a denial of service (DoS). The malformed investigation prevents the generation and rendering of the Investigations manager until it is deleted.
The vulnerability requires an authenticated session and access to create an Investigation. It only affects the availability of the Investigations manager, but without the manager, the Investigations functionality becomes unusable for most users.

Ссылки

https://advisory.splunk.com/advisories/SVD-2024-0102
Vendor Advisory
https://research.splunk.com/application/7f6a07bd-82ef-46b8-8eba-802278abd00e/
Vendor Advisory
https://advisory.splunk.com/advisories/SVD-2024-0102
Vendor Advisory
https://research.splunk.com/application/7f6a07bd-82ef-46b8-8eba-802278abd00e/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:splunk:enterprise_security:*:*:*:*:*:*:*:*

Версия от 7.1.0 (включая) до 7.1.2 (исключая)

EPSS

Процентиль: 52%

0.00288

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-20

NVD-CWE-noinfo

Связанные уязвимости

GHSA-w48w-95mf-vvc4

CVSS3: 6.5

github

около 2 лет назад

In Splunk Enterprise Security (ES) versions lower than 7.1.2, an attacker can create a malformed Investigation to perform a denial of service (DoS). The malformed investigation prevents the generation and rendering of the Investigations manager until it is deleted.<br>The vulnerability requires an authenticated session and access to create an Investigation. It only affects the availability of the Investigations manager, but without the manager, the Investigations functionality becomes unusable for most users.

EPSS

Процентиль: 52%

0.00288

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-20

NVD-CWE-noinfo