Lucene search
SplunkCVELIST:CVE-2024-36984HistoryJul 01, 2024 - 4:30 p.m.
CVE-2024-36984 Remote Code Execution through Serialized Session Payload in Splunk Enterprise on Windows
2024-07-0116:30:44
Splunk
www.cve.org
10
cve-2024-36984
remote code execution
splunk enterprise
windows
serialized session payload.
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.2%
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 on Windows, an authenticated user could execute a specially crafted query that they could then use to serialize untrusted data. The attacker could use the query to execute arbitrary code.
CNA Affected
[
{
"product": "Splunk Enterprise",
"vendor": "Splunk",
"versions": [
{
"version": "9.2",
"status": "affected",
"versionType": "custom",
"lessThan": "9.2.2"
},
{
"version": "9.1",
"status": "affected",
"versionType": "custom",
"lessThan": "9.1.5"
},
{
"version": "9.0",
"status": "affected",
"versionType": "custom",
"lessThan": "9.0.10"
}
]
}
]Related
vulnrichment
vulnrichment
nessus
nessus
nvd
nvd
CVE-2024-36984
2024-07-01 17:15:06
cve
cve
CVE-2024-36984
2024-07-01 17:15:06
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
9.2%
Related for CVELIST:CVE-2024-36984