CVE-2024-45733

Summary

CVE-2024-45733 is a newly identified vulnerability affecting Splunk Enterprise for Windows versions below 9.2.3 and 9.1.6. This issue allows a low-privileged user, who does not possess administrative or power roles, to execute arbitrary code remotely. The root cause lies in an insecure session storage configuration, which has been exploited to bypass the intended access control restrictions. Successful exploitation of this vulnerability could lead to significant security risks, including unauthorized system access and data theft. IT administrators are strongly encouraged to upgrade their Splunk Enterprise installations to the latest patched versions to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.