Critical Code Execution Vulnerability Patched in Splunk Enterprise


Splunk announced the availability of out-of-band patches for Splunk Enterprise this week, including a serious vulnerability that could lead to arbitrary code execution.Splunk employs Splunk Enterprise deployment servers to distribute configurations and content updates to multiple Enterprise instances, including forwarders, indexers, and search heads, in order to provide large data monitoring and search capabilities.

With the release of Enterprise deployment server version 9.0, Splunk has rectified the issue, and users are encouraged to update their instances to this version or higher. Read More…