Unrated severityNVD Advisory· Published Mar 27, 2024· Updated Feb 28, 2025
Risky command safeguards bypass in Dashboard Examples Hub
CVE-2024-29946
Description
In Splunk Enterprise versions below 9.2.1, 9.1.4, and 9.0.9, the Dashboard Examples Hub lacks protections for risky SPL commands. This could let attackers bypass SPL safeguards for risky commands in the Hub. The vulnerability would require the attacker to phish the victim by tricking them into initiating a request within their browser.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3<9.0.9, 9.1.0–9.1.3, 9.2.0–9.2.0+ 1 more
- (no CPE)range: <9.0.9, 9.1.0–9.1.3, 9.2.0–9.2.0
- (no CPE)range: 9.2
- Range: -
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.