{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Universal Forwarder versions 9.3.x ant\u00e9rieures \u00e0 9.3.4","product":{"name":"Universal Forwarder","vendor":{"name":"Splunk","scada":false}}},{"description":"Splunk Operator for Kubernetes versions ant\u00e9rieures \u00e0 2.8.0","product":{"name":"Splunk Operator for Kubernetes","vendor":{"name":"Splunk","scada":false}}},{"description":"Universal Forwarder versions 9.2.x ant\u00e9rieures \u00e0 9.2.6","product":{"name":"Universal Forwarder","vendor":{"name":"Splunk","scada":false}}},{"description":"Splunk versions 9.3.x ant\u00e9rieures \u00e0 9.3.4","product":{"name":"Splunk","vendor":{"name":"Splunk","scada":false}}},{"description":"Universal Forwarder versions 9.4.x ant\u00e9rieures \u00e0 9.4.2","product":{"name":"Universal Forwarder","vendor":{"name":"Splunk","scada":false}}},{"description":"Universal Forwarder versions 9.1.x ant\u00e9rieures \u00e0 9.1.9","product":{"name":"Universal Forwarder","vendor":{"name":"Splunk","scada":false}}},{"description":"Splunk versions 9.1.x ant\u00e9rieures \u00e0 9.1.9","product":{"name":"Splunk","vendor":{"name":"Splunk","scada":false}}},{"description":"Splunk versions 9.2.x ant\u00e9rieures \u00e0 9.2.6","product":{"name":"Splunk","vendor":{"name":"Splunk","scada":false}}},{"description":"Splunk versions 9.4.x ant\u00e9rieures \u00e0 9.4.2","product":{"name":"Splunk","vendor":{"name":"Splunk","scada":false}}},{"description":"Splunk AppDynamics Smart Agent versions ant\u00e9rieures \u00e0 25.5.1","product":{"name":"Splunk AppDynamics Smart Agent","vendor":{"name":"Splunk","scada":false}}}],"affected_systems_content":"","content":"## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des correctifs (cf. section Documentation).","cves":[{"name":"CVE-2024-24790","url":"https://www.cve.org/CVERecord?id=CVE-2024-24790"},{"name":"CVE-2025-22872","url":"https://www.cve.org/CVERecord?id=CVE-2025-22872"},{"name":"CVE-2024-45341","url":"https://www.cve.org/CVERecord?id=CVE-2024-45341"},{"name":"CVE-2023-44487","url":"https://www.cve.org/CVERecord?id=CVE-2023-44487"},{"name":"CVE-2025-22866","url":"https://www.cve.org/CVERecord?id=CVE-2025-22866"},{"name":"CVE-2024-45336","url":"https://www.cve.org/CVERecord?id=CVE-2024-45336"},{"name":"CVE-2024-41110","url":"https://www.cve.org/CVERecord?id=CVE-2024-41110"},{"name":"CVE-2025-22871","url":"https://www.cve.org/CVERecord?id=CVE-2025-22871"},{"name":"CVE-2025-22869","url":"https://www.cve.org/CVERecord?id=CVE-2025-22869"},{"name":"CVE-2025-22870","url":"https://www.cve.org/CVERecord?id=CVE-2025-22870"},{"name":"CVE-2025-30204","url":"https://www.cve.org/CVERecord?id=CVE-2025-30204"},{"name":"CVE-2023-42366","url":"https://www.cve.org/CVERecord?id=CVE-2023-42366"}],"links":[],"reference":"CERTFR-2025-AVI-0532","revisions":[{"description":"Version initiale","revision_date":"2025-06-24T00:00:00.000000"}],"risks":[{"description":"Non sp\u00e9cifi\u00e9 par l'\u00e9diteur"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Splunk. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l'\u00e9diteur.","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Splunk","vendor_advisories":[{"published_at":"2025-06-23","title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2025-0607","url":"https://advisory.splunk.com/advisories/SVD-2025-0607"},{"published_at":"2025-06-23","title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2025-0610","url":"https://advisory.splunk.com/advisories/SVD-2025-0610"},{"published_at":"2025-06-23","title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2025-0608","url":"https://advisory.splunk.com/advisories/SVD-2025-0608"},{"published_at":"2025-06-23","title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2025-0609","url":"https://advisory.splunk.com/advisories/SVD-2025-0609"}]}