Splunk Products Multiple Vulnerabilities
Release Date:
27 Mar 2025
1106
Views
RISK: Medium Risk
TYPE: Security software and application - Security Software & Appliance
Multiple vulnerabilities were identified in Splunk products. A remote attacker could exploit some of these vulnerabilities to trigger cross-site scripting, remote code execution, security restriction bypass, sensitive information disclosure and data manipulation on the targeted system.
Impact
- Remote Code Execution
- Information Disclosure
- Cross-Site Scripting
- Security Restriction Bypass
- Data Manipulation
System / Technologies affected
- Splunk Enterprise versions 9.1.0 to 9.1.7, 9.2.0 to 9.2.4, 9.3.0 to 9.3.2 and 9.4.0
- Splunk Cloud Platform versions below 9.1.2308.214, below 9.1.2312.208, below 9.2.2403.115, 9.2.2403.100 to 9.2.2403.112, 9.2.2406.100 to 9.2.2406.112, 9.3.2408.100 to 9.3.2408.106
- Splunk Secure Gateway app versions below 3.8.38 and below 3.7.23
- Splunk App for Data Science and Deep Learning version 5.1.2, 5.1.1 and 5.1.0
- Splunk App for Lookup File Editing version below 4.0.5
- Splunk DB Connect version below 4.0.0
- Splunk Add-on for Microsoft Cloud Services version below 5.4.4
- Splunk Infrastructure Monitoring Add-on version below 1.2.7
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- https://advisory.splunk.com//advisories/SVD-2025-0301
- https://advisory.splunk.com//advisories/SVD-2025-0302
- https://advisory.splunk.com//advisories/SVD-2025-0303
- https://advisory.splunk.com//advisories/SVD-2025-0304
- https://advisory.splunk.com//advisories/SVD-2025-0305
- https://advisory.splunk.com//advisories/SVD-2025-0306
- https://advisory.splunk.com//advisories/SVD-2025-0307
- https://advisory.splunk.com//advisories/SVD-2025-0308
- https://advisory.splunk.com//advisories/SVD-2025-0309
- https://advisory.splunk.com//advisories/SVD-2025-0310
- https://advisory.splunk.com//advisories/SVD-2025-0311
- https://advisory.splunk.com//advisories/SVD-2025-0312
- https://advisory.splunk.com//advisories/SVD-2025-0313
Vulnerability Identifier
- CVE-2023-5363
- CVE-2024-2511
- CVE-2024-3651
- CVE-2024-4603
- CVE-2024-6923
- CVE-2024-21090
- CVE-2024-21272
- CVE-2024-29857
- CVE-2024-38999
- CVE-2024-39338
- CVE-2024-45801
- CVE-2024-47875
- CVE-2025-20226
- CVE-2025-20227
- CVE-2025-20228
- CVE-2025-20229
- CVE-2025-20230
- CVE-2025-20231
- CVE-2025-20232
- CVE-2025-20233
Source
Related Link
- https://advisory.splunk.com//advisories/SVD-2025-0301
- https://advisory.splunk.com//advisories/SVD-2025-0302
- https://advisory.splunk.com//advisories/SVD-2025-0303
- https://advisory.splunk.com//advisories/SVD-2025-0304
- https://advisory.splunk.com//advisories/SVD-2025-0305
- https://advisory.splunk.com//advisories/SVD-2025-0306
- https://advisory.splunk.com//advisories/SVD-2025-0307
- https://advisory.splunk.com//advisories/SVD-2025-0308
- https://advisory.splunk.com//advisories/SVD-2025-0309
- https://advisory.splunk.com//advisories/SVD-2025-0310
- https://advisory.splunk.com//advisories/SVD-2025-0311
- https://advisory.splunk.com//advisories/SVD-2025-0312
- https://advisory.splunk.com//advisories/SVD-2025-0313
Related Tags
Share with