CVE-2024-45737 | Splunk Enterprise/Cloud Platform prior 9.1.6/9.2.3/9.3.1 KVStore cross-site request forgery (SVD-2024-1007)

Inserito da Angelo Barbosa | Ott 14, 2024 | CVE

A vulnerability was found in Splunk Enterprise and Cloud Platform and classified as problematic. This issue affects some unknown processing of the component KVStore. The manipulation leads to cross-site request forgery.

The identification of this vulnerability is CVE-2024-45737. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45737 | Splunk Enterprise/Cloud Platform prior 9.1.6/9.2.3/9.3.1 KVStore cross-site request forgery (SVD-2024-1007)

Post correlati

CVE-2024-33117 | crmeb_java 1.3.4 com.zbkj.front.pub.ImageMergeController mergeList server-side request forgery

CVE-2023-52079 | kriszyp msgpackr up to 1.10.0 MessagePack Message recursion (GHSA-7hpj-7hhx-2fgx)

CVE-2024-35746 | Asghar Hatampoor BuddyPress Cover Plugin up to 2.1.4.2 on WordPress unrestricted upload

CVE-2024-7662 | SourceCodester Car Driving School Management System 1.0 manag_package.php save_package cross-site request forgery