cbcvebase.
CVE-2023-40596
published 2023-08-30

CVE-2023-40596: In Splunk Enterprise versions earlier than 8.2.12, 9.0.6, and 9.1.1, a dynamic link library (DLL) that ships with Splunk Enterprise references an insecure path…

PriorityP344high8.8CVSS 3.1
AVLACLPRLUINSCCHIHAH
EPSS
0.16%
5.2th percentile
In Splunk Enterprise versions earlier than 8.2.12, 9.0.6, and 9.1.1, a dynamic link library (DLL) that ships with Splunk Enterprise references an insecure path for the OPENSSLDIR build definition. An attacker can abuse this reference and subsequently install malicious code to achieve privilege escalation on the Windows machine.

Affected

6 ranges
VendorProductVersion rangeFixed in
splunksplunk
splunksplunk>= 8.2.0 < 8.2.128.2.12
splunksplunk>= 9.0.0 < 9.0.69.0.6
splunksplunk_enterprise>= 8.2 < 8.2.128.2.12
splunksplunk_enterprise>= 9.0 < 9.0.69.0.6
splunksplunk_enterprise>= 9.1 < 9.1.19.1.1
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.