Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2024-45731

In Splunk Enterprise for Windows versions below 9.3.1, 9.2.3, and 9.1.6, a low-privileged user that does not hold the "admin" or "power" Splunk roles could write a file to the Windows system root directory, which has a default location in the Windows System32 folder, when Splunk Enterprise for Windows is installed on a separate drive.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.3%
CVSS Severity
CVSS v3 Score 8.0
Products affected by CVE-2024-45731
  • Splunk » Splunk » Version: 9.1.0
    cpe:2.3:a:splunk:splunk:9.1.0
  • Splunk » Splunk » Version: 9.1.0.1
    cpe:2.3:a:splunk:splunk:9.1.0.1
  • Splunk » Splunk » Version: 9.1.0.2
    cpe:2.3:a:splunk:splunk:9.1.0.2
  • Splunk » Splunk » Version: 9.1.1
    cpe:2.3:a:splunk:splunk:9.1.1
  • Splunk » Splunk » Version: 9.1.2
    cpe:2.3:a:splunk:splunk:9.1.2
  • Splunk » Splunk » Version: 9.1.3
    cpe:2.3:a:splunk:splunk:9.1.3
  • Splunk » Splunk » Version: 9.1.4
    cpe:2.3:a:splunk:splunk:9.1.4
  • Splunk » Splunk » Version: 9.1.5
    cpe:2.3:a:splunk:splunk:9.1.5
  • Splunk » Splunk » Version: 9.2.0
    cpe:2.3:a:splunk:splunk:9.2.0
  • Splunk » Splunk » Version: 9.2.1
    cpe:2.3:a:splunk:splunk:9.2.1
  • Splunk » Splunk » Version: 9.2.2
    cpe:2.3:a:splunk:splunk:9.2.2
  • Splunk » Splunk » Version: 9.3.0
    cpe:2.3:a:splunk:splunk:9.3.0
  • Microsoft » Windows » Version: N/A
    cpe:2.3:o:microsoft:windows:-


Products
Pricing
Contact Us

Shodan ® - All rights reserved