Unrated severityNVD Advisory· Published Jun 1, 2023· Updated Feb 28, 2025
Role-based Access Control (RBAC) Bypass on '/services/indexing/preview' REST Endpoint Can Overwrite Search Results
CVE-2023-32717
Description
On Splunk Enterprise versions below 9.0.5, 8.2.11, and 8.1.14, and in Splunk Cloud Platform versions below 9.0.2303.100, an unauthorized user can access the {{/services/indexing/preview}} REST endpoint to overwrite search results if they know the search ID (SID) of an existing search job.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4<9.0.2303.100+ 1 more
- (no CPE)range: <9.0.2303.100
- (no CPE)range: -
<9.0.5, <8.2.11, <8.1.14+ 1 more
- (no CPE)range: <9.0.5, <8.2.11, <8.1.14
- (no CPE)range: 8.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.