CVE-2023-3997

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jul 31, 2023

Updated: Apr 10, 2024

CWE ID 415

Summary

CVE-2023-3997: Splunk SOAR versions below 6.1.0 are susceptible to log file poisoning due to a vulnerability triggered by maliciously crafted web requests. These requests contain specific ANSI characters that can manipulate logs. When users attempt to view the tampered logs in their terminal, they may inadvertently execute malicious code, posing a potential security risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Massachusetts Institute of Technology

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sQYDiC
https://www.cve.org/CVERecord?id=CVE-2023-3997
https://nvd.nist.gov/vuln/detail/CVE-2023-3997

Back to Vulnerability Database

CVE-2023-3997

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations