Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2024-23678
HistoryJan 22, 2024 - 9:15 p.m.

Deserialization of untrusted data

2024-01-2221:15:00
PRIOn knowledge base
www.prio-n.com
11
splunk
enterprise
windows
deserialization
vulnerability
untrusted data
disk partition

7.2 High

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

16.2%

JSON

In Splunk Enterprise for Windows versions below 9.0.8 and 9.1.3, Splunk Enterprise does not correctly sanitize path input data. This results in the unsafe deserialization of untrusted data from a separate disk partition on the machine. This vulnerability only affects Splunk Enterprise for Windows.

CPENameOperatorVersion
splunkge9.0.0
splunklt9.0.8
splunkge9.1.0
splunklt9.1.3

Related

nvd 1
cve 1
cvelist 1
nessus 1
nvd
nvd
CVE-2024-23678
2024-01-22 21:15:10
cve
cve
CVE-2024-23678
2024-01-22 21:15:10
cvelist
cvelist
CVE-2024-23678 Deserialization of Untrusted Data on Splunk Enterprise for Windows through Path Traversal from Separate Disk Partition
2024-01-22 20:37:43
nessus
nessus
Splunk Enterprise 9.0.0 < 9.0.8, 9.1.0 < 9.1.3 (SVD-2024-0108)
2024-01-22 00:00:00

7.2 High

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

16.2%

JSON
Related for PRION:CVE-2024-23678
nvd1cve1cvelist1nessus1