CVE-2024-23678

Summary

In Splunk Enterprise for Windows versions below 9.0.8 and 9.1.3, Splunk Enterprise does not correctly sanitize path input data. This results in the unsafe deserialization of untrusted data from a separate disk partition on the machine. This vulnerability only affects Splunk Enterprise for Windows.

Affected Software

VendorProductVersion RangeStatus
SplunkSplunk Enterprise9.0 < 9.0.8affected
SplunkSplunk Enterprise9.1 < 9.1.3affected

Weaknesses

  • CWE-20: The product does not validate or incorrectly validates input that can affect the control flow or data flow of a program.

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References