{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2023-22931","assignerOrgId":"42b59230-ec95-491e-8425-5a5befa1a469","state":"PUBLISHED","assignerShortName":"Splunk","dateReserved":"2023-01-10T21:39:55.583Z","datePublished":"2023-02-14T17:22:36.712Z","dateUpdated":"2025-02-28T11:03:46.340Z"},"containers":{"cna":{"affected":[{"product":"Splunk Enterprise","vendor":"Splunk","versions":[{"version":"8.1","status":"affected","versionType":"custom","lessThan":"8.1.13"},{"version":"8.2","status":"affected","versionType":"custom","lessThan":"8.2.10"}]},{"product":"Splunk Cloud Platform","vendor":"Splunk","versions":[{"version":"-","status":"affected","versionType":"custom","lessThan":"8.2.2203"}]}],"descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"In Splunk Enterprise versions below 8.1.13 and 8.2.10, the ‘createrss’ external search command overwrites existing Resource Description Format Site Summary (RSS) feeds without verifying permissions. This feature has been deprecated and disabled by default."}],"value":"In Splunk Enterprise versions below 8.1.13 and 8.2.10, the ‘createrss’ external search command overwrites existing Resource Description Format Site Summary (RSS) feeds without verifying permissions. This feature has been deprecated and disabled by default."}],"references":[{"url":"https://advisory.splunk.com/advisories/SVD-2023-0201"},{"url":"https://research.splunk.com/application/ee69374a-d27e-4136-adac-956a96ff60fd/"}],"title":"‘createrss’ External Search Command Overwrites Existing RSS Feeds in Splunk Enterprise","datePublic":"2023-02-14T00:00:00.000Z","metrics":[{"cvssV3_1":{"vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","version":"3.1","baseScore":4.3,"baseSeverity":"MEDIUM"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"lang":"en","type":"cwe","description":"The software does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action.","cweId":"CWE-285"}]}],"source":{"advisory":"SVD-2023-0201"},"credits":[{"lang":"en","value":"James Ervin, Splunk"}],"providerMetadata":{"orgId":"42b59230-ec95-491e-8425-5a5befa1a469","shortName":"Splunk","dateUpdated":"2025-02-28T11:03:46.340Z"}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T10:20:31.394Z"},"title":"CVE Program Container","references":[{"url":"https://advisory.splunk.com/advisories/SVD-2023-0201","tags":["x_transferred"]},{"url":"https://research.splunk.com/application/ee69374a-d27e-4136-adac-956a96ff60fd/","tags":["x_transferred"]}]}]}}