CVE-2024-53243

EUVD-2024-51915
In Splunk Enterprise versions below 9.3.2, 9.2.4, and 9.1.7 and versions below 3.2.462, 3.7.18, and 3.8.5 of the Splunk Secure Gateway app on Splunk Cloud Platform, a low-privileged user that does not hold the “admin“ or “power“ Splunk roles could see alert search query responses using Splunk Secure Gateway App Key Value Store (KVstore) collections endpoints due to improper access control.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
SplunkCNA
4.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 45%
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
splunksplunk
9.3 ≤
𝑥
< 9.3.2
CNA
splunksplunk
9.2 ≤
𝑥
< 9.2.4
CNA
splunksplunk
9.1 ≤
𝑥
< 9.1.7
CNA
splunksplunk
3.8 ≤
𝑥
< 3.8.5
CNA
splunksplunk
3.7 ≤
𝑥
< 3.7.18
CNA
splunksplunk
3.4 ≤
𝑥
< 3.4.262
CNA
Common Weakness Enumeration
References
https://advisory.splunk.com/advisories/SVD-2024-1201