CVE-2024-45733 | Splunk Enterprise up to 9.1.5/9.2.2 on Windows Session Storage Configuration deserialization (SVD-2024-1003)

Posted by Angelo Barbosa | Oct 14, 2024 | CVE

A vulnerability has been found in Splunk Enterprise up to 9.1.5/9.2.2 on Windows and classified as very critical. Affected by this vulnerability is an unknown functionality of the component Session Storage Configuration Handler. The manipulation leads to deserialization.

This vulnerability is known as CVE-2024-45733. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45733 | Splunk Enterprise up to 9.1.5/9.2.2 on Windows Session Storage Configuration deserialization (SVD-2024-1003)

Related Posts

CVE-2024-25099 | David de Boer Paytium Plugin up to 4.4.2 on WordPress cross site scripting

CVE-2023-51801 | Simple Student Attendance System 1.0 student_form.php id sql injection

CVE-2024-0712 | Beijing Baichuo Smart S150 Management Platform V31R02B15 userattea.php access control

CVE-2024-1703 | ZhongBangKeJi CRMEB 5.2.2 openfile absolute path traversal