In Splunk Enterprise for Windows versions below 9.0.8 and 9.1.3, Splunk Enterprise does not correctly sanitize path input data. This results in the unsafe deserialization of untrusted data from a separate disk partition on the machine. This vulnerability only affects Splunk Enterprise for Windows.
https://thecyberthrone.in/2024/01/24/splunk-patches-cve-2024-23678-deserialization-bug/
https://securityaffairs.com/158019/security/splunk-flaw-windows-installs.html?web_view=true
https://securityaffairs.com/158019/security/splunk-flaw-windows-installs.html
https://research.splunk.com/application/947d4d2e-1b64-41fc-b32a-736ddb88ce97/