Lucene search
+L

6 matches found

circl
circl
added 2024/07/03 12:18 p.m.7 views

CVE-2024-36984

creationtimestamp| type| source ---|---|--- 2024-07-03 12:18:30+00:00| seen| https://t.me/truesecator/5927...

8.8CVSS4.8AI score0.01412EPSS
Exploits0References1
nvd
nvd
added 2024/07/01 5:15 p.m.33 views

CVE-2024-36984

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 on Windows, an authenticated user could execute a specially crafted query that they could then use to serialize untrusted data. The attacker could use the query to execute arbitrary code...

8.8CVSS0.01412EPSS
Exploits0References2
cve
cve
added 2024/07/01 4:30 p.m.99 views

CVE-2024-36984

CVE-2024-36984 : Splunk Enterprise on Windows is vulnerable to remote code execution through deserialization via a crafted query. An authenticated user can use a specific query to serialize untrusted data, leading to arbitrary code execution. Affected versions are Windows builds of Splunk Enterpr...

8.8CVSS8.8AI score0.01412EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2024/07/01 4:30 p.m.50 views

CVE-2024-36984 Remote Code Execution through Serialized Session Payload in Splunk Enterprise on Windows

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 on Windows, an authenticated user could execute a specially crafted query that they could then use to serialize untrusted data. The attacker could use the query to execute arbitrary code...

8.8CVSS7.3AI score0.01412EPSS
Exploits0References2
cvelist
cvelist
added 2024/07/01 4:30 p.m.32 views

CVE-2024-36984 Remote Code Execution through Serialized Session Payload in Splunk Enterprise on Windows

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 on Windows, an authenticated user could execute a specially crafted query that they could then use to serialize untrusted data. The attacker could use the query to execute arbitrary code...

8.8CVSS0.01412EPSS
Exploits0References2
nessus
nessus
added 2024/07/01 12:0 a.m.21 views

Splunk Enterprise 9.0.0 < 9.0.10, 9.1.0 < 9.1.5, 9.2.0 < 9.2.2 (SVD-2024-0704)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2024-0704 advisory. - In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 on Windows, an authenticated user could execute a specially...

8.8CVSS6.3AI score0.01412EPSS
Exploits0References2
Rows per page
Query Builder