CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Splunk: >> Splunk >> 9.0.7 Security Vulnerabilities

CVE-2024-23678

In Splunk Enterprise for Windows versions below 9.0.8 and 9.1.3, Splunk Enterprise does not correctly sanitize path input data. This results in the unsafe deserialization of untrusted data from a separate disk partition on the machine. This vulnerability only affects Splunk Enterprise for Windows.

CVSS Score

7.5

EPSS Score

0.001

Published

2024-01-22

Page 3

Vulnerabilities

Vulnerable Software

Splunk: >> Splunk >> 9.0.7 Security Vulnerabilities

Products

Pricing

Contact Us