{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-53243", "assignerOrgId": "42b59230-ec95-491e-8425-5a5befa1a469", "state": "PUBLISHED", "assignerShortName": "Splunk", "dateReserved": "2024-11-19T18:30:28.773Z", "datePublished": "2024-12-10T18:00:49.236Z", "dateUpdated": "2025-02-28T11:03:42.526Z"}, "containers": {"cna": {"affected": [{"product": "Splunk Enterprise", "vendor": "Splunk", "versions": [{"version": "9.3", "status": "affected", "versionType": "custom", "lessThan": "9.3.2"}, {"version": "9.2", "status": "affected", "versionType": "custom", "lessThan": "9.2.4"}, {"version": "9.1", "status": "affected", "versionType": "custom", "lessThan": "9.1.7"}]}, {"product": "Splunk Secure Gateway", "vendor": "Splunk", "versions": [{"version": "3.8", "status": "affected", "versionType": "custom", "lessThan": "3.8.5"}, {"version": "3.7", "status": "affected", "versionType": "custom", "lessThan": "3.7.18"}, {"version": "3.4", "status": "affected", "versionType": "custom", "lessThan": "3.4.262"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "In Splunk Enterprise versions below 9.3.2, 9.2.4, and 9.1.7 and versions below 3.2.462, 3.7.18, and 3.8.5 of the Splunk Secure Gateway app on Splunk Cloud Platform, a low-privileged user that does not hold the \u201cadmin\u201c or \u201cpower\u201c Splunk roles could see alert search query responses using Splunk Secure Gateway App Key Value Store (KVstore) collections endpoints due to improper access control."}], "value": "In Splunk Enterprise versions below 9.3.2, 9.2.4, and 9.1.7 and versions below 3.2.462, 3.7.18, and 3.8.5 of the Splunk Secure Gateway app on Splunk Cloud Platform, a low-privileged user that does not hold the \u201cadmin\u201c or \u201cpower\u201c Splunk roles could see alert search query responses using Splunk Secure Gateway App Key Value Store (KVstore) collections endpoints due to improper access control."}], "references": [{"url": "https://advisory.splunk.com/advisories/SVD-2024-1201"}], "title": "Information Disclosure in Mobile Alert Responses in Splunk Secure Gateway", "datePublic": "2024-12-10T00:00:00.000Z", "metrics": [{"cvssV3_1": {"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "version": "3.1", "baseScore": 4.3, "baseSeverity": "MEDIUM"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "cwe", "description": "The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.", "cweId": "CWE-200"}]}], "source": {"advisory": "SVD-2024-1201"}, "credits": [{"lang": "en", "value": "Anton (therceman)"}], "providerMetadata": {"orgId": "42b59230-ec95-491e-8425-5a5befa1a469", "shortName": "Splunk", "dateUpdated": "2025-02-28T11:03:42.526Z"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-12-10T20:39:37.960229Z", "id": "CVE-2024-53243", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-12-10T21:13:54.950Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-53243", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-12-10T20:39:37.960229Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-12-10T20:40:39.777Z"}}], "cna": {"title": "Information Disclosure in Mobile Alert Responses in Splunk Secure Gateway", "source": {"advisory": "SVD-2024-1201"}, "credits": [{"lang": "en", "value": "Anton (therceman)"}], "metrics": [{"format": "CVSS", "cvssV3_1": {"version": "3.1", "baseScore": 4.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Splunk", "product": "Splunk Enterprise", "versions": [{"status": "affected", "version": "9.3", "lessThan": "9.3.2", "versionType": "custom"}, {"status": "affected", "version": "9.2", "lessThan": "9.2.4", "versionType": "custom"}, {"status": "affected", "version": "9.1", "lessThan": "9.1.7", "versionType": "custom"}]}, {"vendor": "Splunk", "product": "Splunk Secure Gateway", "versions": [{"status": "affected", "version": "3.8", "lessThan": "3.8.5", "versionType": "custom"}, {"status": "affected", "version": "3.7", "lessThan": "3.7.18", "versionType": "custom"}, {"status": "affected", "version": "3.4", "lessThan": "3.4.262", "versionType": "custom"}]}], "datePublic": "2024-12-10T00:00:00.000Z", "references": [{"url": "https://advisory.splunk.com/advisories/SVD-2024-1201"}], "descriptions": [{"lang": "en", "value": "In Splunk Enterprise versions below 9.3.2, 9.2.4, and 9.1.7 and versions below 3.2.462, 3.7.18, and 3.8.5 of the Splunk Secure Gateway app on Splunk Cloud Platform, a low-privileged user that does not hold the \u201cadmin\u201c or \u201cpower\u201c Splunk roles could see alert search query responses using Splunk Secure Gateway App Key Value Store (KVstore) collections endpoints due to improper access control.", "supportingMedia": [{"type": "text/html", "value": "In Splunk Enterprise versions below 9.3.2, 9.2.4, and 9.1.7 and versions below 3.2.462, 3.7.18, and 3.8.5 of the Splunk Secure Gateway app on Splunk Cloud Platform, a low-privileged user that does not hold the \u201cadmin\u201c or \u201cpower\u201c Splunk roles could see alert search query responses using Splunk Secure Gateway App Key Value Store (KVstore) collections endpoints due to improper access control.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "cwe", "cweId": "CWE-200", "description": "The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information."}]}], "providerMetadata": {"orgId": "42b59230-ec95-491e-8425-5a5befa1a469", "shortName": "Splunk", "dateUpdated": "2025-02-28T11:03:42.526Z"}}}, "cveMetadata": {"cveId": "CVE-2024-53243", "state": "PUBLISHED", "dateUpdated": "2025-02-28T11:03:42.526Z", "dateReserved": "2024-11-19T18:30:28.773Z", "assignerOrgId": "42b59230-ec95-491e-8425-5a5befa1a469", "datePublished": "2024-12-10T18:00:49.236Z", "assignerShortName": "Splunk"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "In Splunk Enterprise versions below 9.3.2, 9.2.4, and 9.1.7 and versions below 3.2.462, 3.7.18, and 3.8.5 of the Splunk Secure Gateway app on Splunk Cloud Platform, a low-privileged user that does not hold the \u201cadmin\u201c or \u201cpower\u201c Splunk roles could see alert search query responses using Splunk Secure Gateway App Key Value Store (KVstore) collections endpoints due to improper access control."}], "id": "CVE-2024-53243", "lastModified": "2024-12-10T18:15:41.093", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "prodsec@splunk.com", "type": "Secondary"}]}, "published": "2024-12-10T18:15:41.093", "references": [{"source": "prodsec@splunk.com", "url": "https://advisory.splunk.com/advisories/SVD-2024-1201"}], "sourceIdentifier": "prodsec@splunk.com", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "prodsec@splunk.com", "type": "Secondary"}]}

{}

{"created": "2025-07-13T11:32:14.641122+00:00", "updated": "2025-07-13T11:32:14.641174+00:00", "vendors": ["splunk", "splunk$PRODUCT$splunk_enterprise", "splunk$PRODUCT$splunk_secure_gateway"]}