VDB
CVE-2023-46214
CVE-2023-46214
PUBLISHED
CVSS 8.5 HIGH
Splunk Enterprise ermöglicht Monitoring und Analyse von Clickstream-Daten und Kundentransaktionen.
EPSS 87.86% · 99.5th percentile
Risk Scores
CVSS v4.0
8.5
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N
EPSS Score
87.86%
99.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Splunk | Splunk Splunk Enterprise <9.1.3 | |
| Amazon | Amazon Linux 2 | |
| Splunk | Splunk Splunk Enterprise <9.3.1 | |
| Splunk | Splunk Splunk Enterprise <9.1.6 | |
| Splunk | Splunk Splunk Enterprise <9.0.7 | |
| Splunk | Splunk Splunk Enterprise <9.2.3 | |
| Dell | Dell NetWorker | |
| Splunk | Splunk Splunk Enterprise <9.1.2 | |
| Red Hat | Red Hat Enterprise Linux | |
| Oracle | Oracle Linux | |
| IBM | IBM MQ Operator | |
| IBM | IBM AIX 7.3 | |
| Splunk | Splunk Splunk Enterprise <9.0.9 | |
| Splunk | Splunk Splunk Enterprise <9.0.8 | |
| IBM | IBM VIOS 4.1 | |
| Xerox | Xerox FreeFlow Print Server v9 | |
| Fedora | Fedora Linux | |
| IBM | IBM QRadar SIEM 7.5 | |
| Splunk | Splunk Splunk Enterprise <9.1.4 | |
| Splunk | Splunk Splunk Enterprise <9.2.1 |
…and 1 more
Exploit Intelligence
- CIRCL published-proof-of-concept: CVE-2023-46214 (circl-sighting)
- CIRCL seen: CVE-2023-46214 (circl-sighting)
- CIRCL published-proof-of-concept: CVE-2023-46214 (circl-sighting)
- CIRCL published-proof-of-concept: CVE-2023-46214 (circl-sighting)
- CIRCL published-proof-of-concept: CVE-2023-46214 (circl-sighting)
- CIRCL published-proof-of-concept: CVE-2023-46214 (circl-sighting)
- CIRCL published-proof-of-concept: CVE-2023-46214 (circl-sighting)
- CIRCL published-proof-of-concept: CVE-2023-46214 (circl-sighting)
- CIRCL published-proof-of-concept: CVE-2023-46214 (circl-sighting)
- CIRCL published-proof-of-concept: CVE-2023-46214 (circl-sighting)
…and 43 more exploits
Timeline
- Nov 16, 2023 CVE Published
- Nov 17, 2023 EPSS Score
- Nov 19, 2023 PoC Published
- Nov 19, 2023 PoC Published
- Nov 19, 2023 PoC Published
- Nov 19, 2023 PoC Published
- Nov 20, 2023 PoC Published
- Nov 21, 2023 PoC Published
- Nov 27, 2023 PoC Published
- Nov 27, 2023 PoC Published
- Nov 27, 2023 PoC Published
- Nov 28, 2023 Metasploit Module
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2964.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2964 advisory
- https://advisory.splunk.com//advisories/SVD-2023-1103 advisory
- https://advisory.splunk.com//advisories/SVD-2023-1104 advisory
- https://advisory.splunk.com//advisories/SVD-2023-1101 advisory
- https://advisory.splunk.com//advisories/SVD-2023-1102 advisory
- https://advisory.splunk.com//advisories/SVD-2023-1105 advisory
- https://advisory.splunk.com//advisories/SVD-2023-1106 advisory
- https://advisory.splunk.com//advisories/SVD-2023-1107 advisory
- https://blog.hrncirik.net/cve-2023-46214-analysis advisory
- https://aix.software.ibm.com/aix/efixes/security/python_advisory7.asc advisory
- https://alas.aws.amazon.com/AL2/ALAS-2024-2387.html advisory
- https://advisory.splunk.com//advisories/SVD-2024-0109 advisory
- https://access.redhat.com/errata/RHSA-2024:0464 advisory
- https://www.ibm.com/support/pages/node/7117884 advisory
- https://security.business.xerox.com/wp-content/uploads/2024/03/Xerox-Security-Bulletin-XRX24-005-Xerox-FreeFlow%C2%AE-Print-Server-v9_Feb-2024.pdf advisory
- https://access.redhat.com/errata/RHSA-2024:1155 advisory
- https://access.redhat.com/errata/RHSA-2024:1383 advisory
- https://www.ibm.com/support/pages/node/7148094 advisory
- https://linux.oracle.com/errata/ELSA-2024-2988.html advisory
…and 10 more