VDB

GCVE-110-NCSC-2024-485

GCVE-110-NCSC-2024-485
Advisory PublishedCVSS 8.8/10
Vulnetix · Advisory published December 11, 2024
De kwetsbaarheid bevindt zich in specifieke versies van Splunk Enterprise en Splunk Secure Gateway, waardoor laaggeprivilegieerde gebruikers op afstand code kunnen uitvoeren zonder dat zij admin rechten hoeven te hebben.

Weaknesses (CWE)

CWE-502Deserialization of Untrusted Data

Risk Scores

CVSS 3.1
8.8/10
High · CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersionsPlatforms
splunksplunk_secure_gateway
splunksplunk_enterprise

References

advisory
advisory
advisory

Browse GCVE Records

71,925 records in the GCVE database · Updated July 13, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›