CVE-2023-32711Cross-site Scripting in Enterprise

CWE-79Cross-site Scripting3 documents3 sources
Severity
5.4MEDIUMNVD
CNA6.1
EPSS
0.4%
top 42.23%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Splunk EnterpriseSplunk
Timeline
PublishedJun 1

Description

In Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, a Splunk dashboard view lets a low-privileged user exploit a vulnerability in the Bootstrap web framework (CVE-2019-8331) and build a stored cross-site scripting (XSS) payload.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:NExploitability: 2.3 | Impact: 2.7

Affected Packages2 packages

CVEListV5splunk/splunk_enterprise8.18.1.14+2
NVDsplunk/splunk8.1.08.1.14+2

🔴Vulnerability Details

2
GHSA
GHSA-w8pw-mmh7-x243: In Splunk Enterprise versions below 92023-06-01
CVEList
Persistent Cross-Site Scripting (XSS) through a URL Validation Bypass within a Dashboard View2023-06-01
CVE-2023-32711 — Cross-site Scripting in Splunk | cvebase