cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-4571,https://securityvulnerability.io/vulnerability/CVE-2023-4571,Unauthenticated Log Injection in Splunk IT Service Intelligence (ITSI),"In vulnerable versions of Splunk IT Service Intelligence (ITSI), malicious actors can exploit a code injection vulnerability by injecting ANSI escape codes into log files. When users read these log files with a vulnerable terminal application, the injected escape codes can execute unwanted commands on their systems. Although this vulnerability does not directly impact Splunk ITSI, it poses a risk based on the permissions of the terminal application and how users interact with malicious log files. Successful exploitation requires users to inadvertently use a terminal that processes these escape codes, further emphasizing the need for caution when handling log files from Splunk ITSI.",Splunk,Splunk Itsi,8.6,HIGH,0.000539999979082495,false,,false,false,false,,,false,false,,2023-08-30T17:15:00.000Z,0