CVE-2024-53246 — Cleartext Transmission of Sensitive Info in Cloud Platform

CWE-319 — Cleartext Transmission of Sensitive Info3 documents3 sources

Severity

7.5HIGHNVD

CNA5.3

EPSS

0.1%

top 78.25%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Splunk Cloud Platform Splunk Enterprise Splunk

Timeline

PublishedDec 10

Description

In Splunk Enterprise versions below 9.3.2, 9.2.4, and 9.1.7 and Splunk Cloud Platform versions below 9.3.2408.101, 9.2.2406.106, 9.2.2403.111, and 9.1.2312.206, an SPL command can potentially disclose sensitive information. The vulnerability requires the exploitation of another vulnerability, such as a Risky Commands Bypass, for successful exploitation.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

▶CVEListV5splunk/splunk_cloud_platform9.3.2408 — 9.3.2408.101+3

▶NVDsplunk/splunk_cloud_platform9.1.2312 — 9.1.2312.206+3

▶CVEListV5splunk/splunk_enterprise9.3 — 9.3.2+2

▶NVDsplunk/splunk9.1.0 — 9.1.7+2

🔴Vulnerability Details

CVEList

Sensitive Information Disclosure through SPL commands↗2024-12-10

▶

GHSA

GHSA-99f4-87g4-qw2h: In Splunk Enterprise versions below 9↗2024-12-10

▶