CVE-2024-45733

high

Description

In Splunk Enterprise for Windows versions below 9.2.3 and 9.1.6, a low-privileged user that does not hold the "admin" or "power" Splunk roles could perform a Remote Code Execution (RCE) due to an insecure session storage configuration.

References

https://www.securityweek.com/splunk-enterprise-update-patches-remote-code-execution-vulnerabilities/

https://research.splunk.com/application/c97e0704-d9c6-454d-89ba-1510a987bf72/

https://advisory.splunk.com/advisories/SVD-2024-1003

Details

Source: Mitre, NVD

Published: 2024-10-14

Updated: 2024-10-16

Risk Information

CVSS v2

Base Score: 9

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H