SVD-2024-0105: Splunk App Key Value Store (KV Store) Improper Handling of Permissions Leads to KV Store Collection Deletion

Splunk Security Advisory

In Splunk Enterprise versions below 9.0.8 and 9.1.3, Splunk app key value store (KV Store) improperly handles permissions for users that use the REST application programming interface (API). This can potentially result in the deletion of KV Store collections.