CNNVD-202510-040 Information
CNNVD ID
CNNVD-202510-040
Related CVE
- CNNVD Published: 2025-10-01
Description (Chinese)
Splunk Cloud Platform和Splunk Enterprise都是美国Splunk公司的产品。Splunk Cloud Platform是一个强大的数据收集、处理和分析服务。Splunk Enterprise是一套数据收集分析软件。 Splunk Cloud Platform和Splunk Enterprise存在安全漏洞,该漏洞源于低权限用户可通过仪表板选项卡标签字段执行XML外部实体注入,可能导致拒绝服务攻击。以下版本受到影响:Splunk Enterprise 9.4.4之前版本、9.3.6之前版本和9.2.8之前版本以及Splunk Cloud Platform 9.3.2411.108之前版本、9.3.2408.118之前版本和9.2.2406.123之前版本。
Description (English)
Splunk Cloud Platform and Splunk Enterprise are products of the United States company Splunk. Splung Cloud Platform is a powerful data collection, processing and analysis service. Splung Enterprise is a data collection and analysis software. There is a security loophole in Splunk Cloud Platform and Splunk Enterprise, which stems from the injection of an external XML entity through the signature section of the dashboard tab, which may lead to a denial of service attack. The following versions were affected: the previous version of Splunk Enterprise 9.4.4, the previous version of 9.3.6 and the pre-version of 9.2.8 and the pre-version of Splunk Cloud Platform 9.3.2411.108, the pre-version of 9.3.2408.118 and the pre-version of 9.2.2406.123.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Splunk
Published
2025-10-01
Last Modified
2026-02-24
References
https://advisory.splunk.com/advisories/SVD-2025-1004 https://vigilance.fr/vulnerability/Splunk-Enterprise-external-XML-entity-injection-via-Dashboard-Label-Field-48366
Patch
https://advisory.splunk.com/advisories/SVD-2025-1005
Share on: