CVE-2014-5198

2022-10-0316:20:43

mitre

www.cve.org

splunk

xss

vulnerability

referer http header

5.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.7%

JSON

Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 6.1.x before 6.1.3 allows remote attackers to inject arbitrary web script or HTML via the Referer HTTP header.

References

secunia.com/advisories/59940

www.securitytracker.com/id/1030690

www.splunk.com/view/SP-CAAAM9H