CVE-2024-23675 Information

Description

In Splunk Enterprise versions below 9.0.8 and 9.1.3 Splunk app key value store (KV Store) improperly handles permissions for users that use the REST application programming interface (API). This can potentially result in the deletion of KV Store collections.

Reference

https://advisory.splunk.com/advisories/SVD-2024-0105 https://research.splunk.com/application/8f0e8380-a835-4f2b-b749-9ce119364df0/