In Splunk App for Stream versions below 8.1.1, a low...
Critical severity
Unreviewed
Published
Jun 1, 2023
to the GitHub Advisory Database
•
Updated Apr 4, 2024
Description
Published by the National Vulnerability Database
Jun 1, 2023
Published to the GitHub Advisory Database
Jun 1, 2023
Last updated
Apr 4, 2024
In Splunk App for Stream versions below 8.1.1, a low-privileged user could use a vulnerability in the streamfwd process within the Splunk App for Stream to escalate their privileges on the machine that runs the Splunk Enterprise instance, up to and including the root user.
References