Lucene search
+L

6 matches found

Circl
Circl
added 2024/07/03 12:18 p.m.7 views

CVE-2024-36984

creationtimestamp| type| source ---|---|--- 2024-07-03 12:18:30+00:00| seen| https://t.me/truesecator/5927...

8.8CVSS4.8AI score0.01412EPSS
Exploits0References1
NVD
NVD
added 2024/07/01 5:15 p.m.33 views

CVE-2024-36984

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 on Windows, an authenticated user could execute a specially crafted query that they could then use to serialize untrusted data. The attacker could use the query to execute arbitrary code...

8.8CVSS0.01412EPSS
Exploits0References2
CVE
CVE
added 2024/07/01 4:30 p.m.100 views

CVE-2024-36984

CVE-2024-36984 : Splunk Enterprise on Windows is vulnerable to remote code execution through deserialization via a crafted query. An authenticated user can use a specific query to serialize untrusted data, leading to arbitrary code execution. Affected versions are Windows builds of Splunk Enterpr...

8.8CVSS8.8AI score0.01412EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/07/01 4:30 p.m.32 views

CVE-2024-36984 Remote Code Execution through Serialized Session Payload in Splunk Enterprise on Windows

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 on Windows, an authenticated user could execute a specially crafted query that they could then use to serialize untrusted data. The attacker could use the query to execute arbitrary code...

8.8CVSS0.01412EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/07/01 4:30 p.m.50 views

CVE-2024-36984 Remote Code Execution through Serialized Session Payload in Splunk Enterprise on Windows

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 on Windows, an authenticated user could execute a specially crafted query that they could then use to serialize untrusted data. The attacker could use the query to execute arbitrary code...

8.8CVSS7.3AI score0.01412EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/01 12:0 a.m.23 views

Splunk Enterprise 9.0.0 < 9.0.10, 9.1.0 < 9.1.5, 9.2.0 < 9.2.2 (SVD-2024-0704)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2024-0704 advisory. - In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 on Windows, an authenticated user could execute a specially...

8.8CVSS6.3AI score0.01412EPSS
Exploits0References2
Rows per page
Query Builder