Denial of Service (DoS) Vulnerability in Splunk Enterprise Versions Prior to 8.2.12, 9.0.6, and 9.1.1

Denial of Service (DoS) Vulnerability in Splunk Enterprise Versions Prior to 8.2.12, 9.0.6, and 9.1.1

CVE-2023-40594 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

In Splunk Enterprise versions lower than 8.2.12, 9.0.6, and 9.1.1, an attacker can use the `printf` SPL function to perform a denial of service (DoS) against the Splunk Enterprise instance.

Learn more about our Web Application Penetration Testing UK.