CVE-2023-46214 Splunk RCE – PoC

CVE-2023-46214 Splunk RCE – PoC

vPython by Prapattimynk

In Splunk Enterprise versions below 9.0.7 and 9.1.2, Splunk Enterprise does not safely sanitize extensible stylesheet language transformations (XSLT) that users supply. This means that an attacker can

Android Android 5.0Exploits And POCs
( 486 ratings )
Price: $0
File Splunk RCE - PoC
Publisher Prapattimynk
Genre Exploits And POCs
File Type Python
Os All
Mod Version Python
Report Report
Splunk RCE - PoC is the most famous version in the Splunk RCE - PoC series of publisher
Download

In Splunk Enterprise versions below 9.0.7 and 9.1.2, Splunk Enterprise does not safely sanitize extensible stylesheet language transformations (XSLT) that users supply. This means that an attacker can upload malicious XSLT which can result in remote code execution on the Splunk Enterprise instance.

  • Prerequisites
  • Splunk credentials with upload permission to adddatamethods
    • Note: another vector might be possible, this is just what I used
  • Splunk is not running on SHC mode


Recommended for You

You may also like

Comments

Your email address will not be published. Required fields are marked *

Next Post X
Ads Blocker Image Powered by Code Help Pro

AdBlocker Detected!!!

We have detected that you are using extensions to block ads. Please support us by disabling these ads blocker.