We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
In Splunk Enterprise versions below 9.2.1, 9.1.4, and 9.0.9, the Dashboard Examples Hub lacks protections for risky SPL commands. This could let attackers bypass SPL safeguards for risky commands in the Hub. The vulnerability would require the attacker to phish the victim by tricking them into initiating a request within their browser.
Reserved 2024-03-21 | Published 2024-03-27 | Updated 2025-02-28 | Assigner Splunkadvisory.splunk.com/advisories/SVD-2024-0302
research.splunk.com/...1cf58ae1-9177-40b8-a26c-8966040f11ae/
Support options