CVE-2024-36997 | Splunk Enterprise/Cloud Platform conf-web Settings REST Endpoint cross site scripting (SVD-2024-0717)

Posted by Angelo Barbosa | Jul 1, 2024 | CVE

A vulnerability classified as problematic has been found in Splunk Enterprise and Cloud Platform. This affects an unknown part of the component conf-web Settings REST Endpoint. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-36997. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-36997 | Splunk Enterprise/Cloud Platform conf-web Settings REST Endpoint cross site scripting (SVD-2024-0717)

Related Posts

CVE-2024-28851 | snowflakedb snowflake-hive-metastore-connector privileges management (GHSA-r68p-g2x9-mq7x)

CVE-2024-38010 | Microsoft Windows up to Server 2022 23H2 Secure Boot length parameter

CVE-2023-41673 | Fortinet FortiADC up to 7.4.0 System Configuration improper authorization (FG-IR-23-270)

CVE-2024-6284 | Google nftables up to 0.1.0 AddSet input validation (Issue 368)