CVE-2024-45739 MEDIUM

CVE-2024-45739: Sensitive information disclosure in AdminManager logging channel

Vendor Splunk

Product Splunk Enterprise

Weakness CWE-200 · Info exposure

Published October 14, 2024

Last update February 28, 2025

View on NVD All CVEs

CVSS base score

4.9/10

Attack vector Network

Attack complexity Low

Privileges required High

User interaction None

Confidentiality High

Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

What the vulnerability does

01Description

In Splunk Enterprise versions below 9.3.1, 9.2.3, and 9.1.6, the software potentially exposes plaintext passwords for local native authentication Splunk users. This exposure could happen when you configure the Splunk Enterprise AdminManager log channel at the DEBUG logging level.

Key dates

02Disclosure timeline

October 14, 2024 CVE published

February 28, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2024-45739 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/200.html

Related vulnerabilities

Identifiers

CVE CVE-2024-45739

CWE CWE-200

CVSS 4.9 / MEDIUM

Affected versions

Vendor Splunk

Product Splunk Enterprise

Affected ≥ 9.3 and < 9.3.1

Vendor Splunk

Product Splunk Enterprise

Affected ≥ 9.2 and < 9.2.3

Vendor Splunk

Product Splunk Enterprise

Affected ≥ 9.1 and < 9.1.6

CVE-2024-45739: Sensitive information disclosure in AdminManager logging channel

01Description

02Disclosure timeline

03References

04Related CVE