VYPR
Unrated severityNVD Advisory· Published Jan 22, 2024· Updated Feb 28, 2025

Splunk App Key Value Store (KV Store) Improper Handling of Permissions Leads to KV Store Collection Deletion

CVE-2024-23675

Description

In Splunk Enterprise versions below 9.0.8 and 9.1.3, Splunk app key value store (KV Store) improperly handles permissions for users that use the REST application programming interface (API). This can potentially result in the deletion of KV Store collections.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.

CVE-2024-23675 · VYPR