CVE-2024-22164

In Splunk Enterprise Security (ES) versions below 7.1.2, an attacker can use investigation attachments to perform a denial of service (DoS) to the Investigation. The attachment endpoint does not properly limit the size of the request which lets an attacker cause the Investigation to become inaccessible.

Published: Jan 9, 2024
Updated: Jan 17, 2024
CVE: CVE-2024-22164
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.3
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

CWEs:

CWE-770

Affected Software
References

Software	From	Fixed in
splunk / enterprise_security	7.1.0	7.1.2

https://advisory.splunk.com/advisories/SVD-2024-0101
https://research.splunk.com/application/bb85b25e-2d6b-4e39-bd27-50db42edcb8f/

Vulnerability Database

289,697

CVE-2024-22164