{"vulnerability": "CVE-2023-32709", "sightings": [{"uuid": "bea932d0-0b75-4522-b721-f370744f4f6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-32709", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/832", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-32709\n\ud83d\udd39 Description: In Splunk Enterprise versions below 9.0.5, 8.2.11. and 8.1.14, and Splunk Cloud Platform versions below 9.0.2303.100, a low-privileged user who holds the \u2018user\u2019 role can see the hashed version of the initial user name and password for the Splunk instance by using the \u2018rest\u2019 SPL command against the \u2018conf-user-seed\u2019 REST endpoint.\n\ud83d\udccf Published: 2023-06-01T16:34:30.933Z\n\ud83d\udccf Modified: 2025-01-08T21:01:15.599Z\n\ud83d\udd17 References:\n1. https://advisory.splunk.com/advisories/SVD-2023-0604\n2. https://research.splunk.com/application/a1be424d-e59c-4583-b6f9-2dcc23be4875/", "creation_timestamp": "2025-01-08T21:13:19.000000Z"}]}