Primary

Context

Splunk App for Lookup File Editing Improper Permission Vulnerability

Vulnerability

Patched

A vulnerability exists in the Splunk App for Lookup File Editing, affecting versions prior to 4.0.5. A script within the application misuses the 'chmod' and 'makedirs' Python functions, leading to excessively permissive read and execute rights. This flaw could allow low-privileged users to bypass intended access controls.

Impact

The vulnerability could enable low-privileged users to gain improper access, potentially allowing them to read or execute files they shouldn't be able to.

Remediation

Users are advised to upgrade the Splunk App for Lookup File Editing to version 4.0.5 or later.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

1.3

exploitability

3.8

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

1.3

exploitability

3.8

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Splunk App for Lookup File Editing Improper Permission Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Splunk App for Lookup File Editing

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating