CVE-2024-23678 | Splunk Enterprise up to 9.0.7/9.1.2 on Windows deserialization (SVD-2024-0108)

Posted by Angelo Barbosa | Jan 22, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Splunk Enterprise up to 9.0.7/9.1.2 on Windows. Affected by this issue is some unknown functionality. The manipulation leads to deserialization.

This vulnerability is handled as CVE-2024-23678. Local access is required to approach this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23678 | Splunk Enterprise up to 9.0.7/9.1.2 on Windows deserialization (SVD-2024-0108)

Related Posts

CVE-2024-2890 | Tumult Hype Animations Plugin up to 1.9.12 on WordPress unrestricted upload

CVE-2024-0733 | Smsot up to 2.12 HTTP POST Request /api.php data[sign] sql injection

CVE-2024-8218 | code-projects Online Quiz Site 1.0 index.php loginid sql injection

CVE-2024-40075 | Laravel 11.x xml external entity reference