cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-3997,https://securityvulnerability.io/vulnerability/CVE-2023-3997,Unauthenticated Log Injection In Splunk SOAR,"Splunk SOAR prior to version 6.1.0 is vulnerable to a log file poisoning attack. An attacker can exploit this vulnerability by sending a specially crafted web request containing specific ANSI characters. This can lead to the manipulation of log files, affecting terminal users who attempt to view these compromised logs. As a result, terminal users may inadvertently execute malicious code, posing significant risks to the security and integrity of the system. Users are encouraged to upgrade to the latest version to mitigate these risks. For more detailed information, please refer to the Splunk advisory.",Splunk,"Splunk Soar (on-premises),Splunk Soar (cloud)",8.6,HIGH,0.0006200000061653554,false,,false,false,false,,,false,false,,2023-07-31T17:15:00.000Z,0