CVE-2023-40592

HIGH

Splunk Enterprise <9.1.1, 9.0.6, 8.2.12 - XSS

Title source: llm

Description

In Splunk Enterprise versions below 9.1.1, 9.0.6, and 8.2.12, an attacker can craft a special web request that can result in reflected cross-site scripting (XSS) on the “/app/search/table” web endpoint. Exploitation of this vulnerability can lead to the execution of arbitrary commands on the Splunk platform instance.

References (2)

Core 2

Core References

Vendor Advisory

https://advisory.splunk.com/advisories/SVD-2023-0801

Vendor Advisory

https://research.splunk.com/application/182f9080-4137-4629-94ac-cb1083ac981a/

Scores

CVSS v3 8.4

EPSS 0.0027

EPSS Percentile 50.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-79

Status published

Products (3)

splunk/splunk 9.1.0

splunk/splunk 8.2.0 - 8.2.12

splunk/splunk_cloud_platform < 9.0.2305.100

Published Aug 30, 2023

Tracked Since Feb 18, 2026