VYPR
Unrated severityNVD Advisory· Published Aug 30, 2023· Updated Feb 28, 2025

Remote Code Execution via Serialized Session Payload

CVE-2023-40595

Description

In Splunk Enterprise versions lower than 8.2.12, 9.0.6, and 9.1.1, an attacker can execute a specially crafted query that they can then use to serialize untrusted data. The attacker can use the query to execute arbitrary code.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.