Vulnerability Description
In Splunk Enterprise 9.0 versions before 9.0.4, a View allows for Cross-Site Scripting (XSS) through the error message in a Base64-encoded image. The vulnerability affects instances with Splunk Web enabled. It does not affect Splunk Enterprise versions below 9.0.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Splunk | Splunk | >= 9.0.0, < 9.0.4 |
| Splunk | Splunk Cloud Platform | < 9.0.2209.3 |
Related Weaknesses (CWE)
References
- https://advisory.splunk.com/advisories/SVD-2023-0202Vendor Advisory
- https://research.splunk.com/application/ce6e1268-e01c-4df2-a617-0f034ed49a43/Vendor Advisory
- https://advisory.splunk.com/advisories/SVD-2023-0202Vendor Advisory
- https://research.splunk.com/application/ce6e1268-e01c-4df2-a617-0f034ed49a43/Vendor Advisory
FAQ
What is CVE-2023-22932?
CVE-2023-22932 is a vulnerability with a CVSS score of 8.7 (HIGH). In Splunk Enterprise 9.0 versions before 9.0.4, a View allows for Cross-Site Scripting (XSS) through the error message in a Base64-encoded image. The vulnerability affects instances with Splunk Web en...
How severe is CVE-2023-22932?
CVE-2023-22932 has been rated HIGH with a CVSS base score of 8.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-22932?
Check the references section above for vendor advisories and patch information. Affected products include: Splunk Splunk, Splunk Splunk Cloud Platform.