Splunk Enterprise/Cloud: Low-Privileged Users Create Experimental Items
CVE-2024-36995 Published on July 1, 2024
Low-privileged user could create experimental items
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312.200 and 9.1.2308.207, a low-privileged user that does not hold the admin or power Splunk roles could create experimental items.
Weakness Type
What is an AuthZ Vulnerability?
The software does not perform an authorization check when an actor attempts to access a resource or perform an action.
CVE-2024-36995 has been classified to as an AuthZ vulnerability or weakness.
Products Associated with CVE-2024-36995
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2024-36995 are published in these products:
Affected Versions
Splunk Enterprise:- Version 9.2 and below 9.2.2 is affected.
- Version 9.1 and below 9.1.5 is affected.
- Version 9.0 and below 9.0.10 is affected.
- Version 9.1.2312 and below 9.1.2312.200 is affected.
- Version 9.1.2308 and below 9.1.2308.207 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.