In Splunk Enterprise versions below 9.0.8 and 9.1.3,...
Moderate severity
Unreviewed
Published
Jan 22, 2024
to the GitHub Advisory Database
•
Updated Jan 29, 2024
Description
Published by the National Vulnerability Database
Jan 22, 2024
Published to the GitHub Advisory Database
Jan 22, 2024
Last updated
Jan 29, 2024
In Splunk Enterprise versions below 9.0.8 and 9.1.3, Splunk app key value store (KV Store) improperly handles permissions for users that use the REST application programming interface (API). This can potentially result in the deletion of KV Store collections.
References