From Cyber Security News – Splunk RCE Vulnerability Let Attackers Upload Malicious File

From Cyber Security News – Splunk RCE Vulnerability Let Attackers Upload Malicious File

A high-severity Remote Code Execution (RCE) flaw in Splunk Enterprise has been discovered, enabling an attacker to upload malicious files. Versions of Splunk Enterprise less than 9.0.7 and 9.1.2 do not properly sanitize user-supplied extended stylesheet language transformations (XSLT). This implies that a malicious XSLT can be uploaded by an attacker, which may cause remote code execution on
The post Splunk RCE Vulnerability Let Attackers Upload Malicious File appeared first on Cyber Security News. Read More  

Comments

No comments yet. Why don’t you start the discussion?

Leave a Reply

Your email address will not be published. Required fields are marked *