Overview
- Description
- In Splunk Enterprise for Windows versions below 9.2.3 and 9.1.6, a low-privileged user that does not hold the "admin" or "power" Splunk roles could perform a Remote Code Execution (RCE) due to an insecure session storage configuration.
- Source
- prodsec@splunk.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
Social media
- Hype score
- Not currently trending
Splunk Enterprise Windows版におけるRCE脆弱性 (CVE-2024-45733) CVSS 8.8 High セッションストレージの設定が不適切なことが原因で、権限が低いユーザーでも、悪意のあるコードを実行できる可能性があります。 早急に9.2.3、9.1.6、または9.3.0以上のバージョンにアップグレードして下さい。 https://t.co/nDfbMKCfWT
@t_nihonmatsu
21 Oct 2024
235 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-45733 (CVSS:8.8, HIGH) is Analyzed. In Splunk Enterprise for Windows versions below 9.2.3 and 9.1.6, a low-privileged user that does not hold the "admin" or..https://t.co/j4gGm2Mvfb #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre
@cracbot
4 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
برای SPLUNK و محصول Enterprise product آن آسیب پذیری های مختلفی منتشر شده است که به هکرها امکان اجرای کد به صورت Remote را می دهند. از معروفترین این آسیب پذیری ها می توان به CVE-2024-45733 و CVE-2024-45732 و CVE-2024-45731 نام برد. https://t.co/Y2P1U3eX7Y https://t.co/ZWDmLoktwj
@AmirHossein_sec
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-45733 (CVSS:8.8, HIGH) is Analyzed. In Splunk Enterprise for Windows versions below 9.2.3 and 9.1.6, a low-privileged user that does not hold the "admin" or..https://t.co/j4gGm2Mvfb #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre
@cracbot
2 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:splunk:splunk:*:*:*:*:enterprise:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FB935ACC-3899-47DE-B4C0-CB94CAC79AC2",
"versionEndExcluding": "9.1.6",
"versionStartIncluding": "9.1.0"
},
{
"criteria": "cpe:2.3:a:splunk:splunk:*:*:*:*:enterprise:*:*:*",
"vulnerable": true,
"matchCriteriaId": "14D07F5E-504B-447B-988B-BF6ADA59F8D1",
"versionEndExcluding": "9.2.3",
"versionStartIncluding": "9.2.0"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]