CVE-2024-36983

Name: CVE-2024-36983
Creator: NVD / NIST
Published: 2024-07-01T17:15:06.257+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 8.8/10EPSS 1.00%

Last modified Jun 17, 2026

CVE-2024-36983 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312.109 and 9.1.2308.207, an authenticated user could create an external lookup that calls a legacy internal function. The authenticated user could use this internal function to insert code into the Splunk platform installation directory. EPSS estimates a 1.00% chance of exploitation in the next 30 days.

Description

In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312.109 and 9.1.2308.207, an authenticated user could create an external lookup that calls a legacy internal function. The authenticated user could use this internal function to insert code into the Splunk platform installation directory. From there, the user could execute arbitrary code on the Splunk platform Instance.

Metrics

CVSS 3.1

8.8/10

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

1.00%

58.2th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Splunk	Splunk	>= 9.0.0, < 9.0.10
Splunk	Splunk	>= 9.1.0, < 9.1.5
Splunk	Splunk	>= 9.2.0, < 9.2.2
Splunk	Splunk Cloud Platform	>= 9.1.2308, < 9.1.2308.207
Splunk	Splunk Cloud Platform	>= 9.1.2312, < 9.1.2312.109

References

https://advisory.splunk.com/advisories/SVD-2024-0703Vendor Advisory
https://research.splunk.com/application/1cf58ae1-9177-40b8-a26c-8966040f11ae/Tool Signature
https://advisory.splunk.com/advisories/SVD-2024-0703Vendor Advisory
https://research.splunk.com/application/1cf58ae1-9177-40b8-a26c-8966040f11ae/Tool Signature

Timeline

Published: Jul 1, 2024
Last Modified: Jun 17, 2026
Status: Analyzed

Frequently Asked Questions

What is CVE-2024-36983?

How severe is CVE-2024-36983?

CVE-2024-36983 has a CVSS score of 8.8/10 (HIGH severity). The EPSS model estimates a 1.00% probability of exploitation in the next 30 days.

How do I fix CVE-2024-36983?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2024-36983?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST