Lucene search
JpcertCVELIST:CVE-2016-4856HistoryMay 12, 2017 - 6:00 p.m.
CVE-2016-4856
2017-05-1218:00:00
jpcert
www.cve.org
Cross-site scripting vulnerability in Splunk Enterprise 6.3.x prior to 6.3.5 and Splunk Light 6.3.x prior to 6.3.5 allows attacker with administrator rights to inject arbitrary web script or HTML via unspecified vectors.
CNA Affected
[
{
"product": "Splunk Enterprise",
"vendor": "Splunk Inc.",
"versions": [
{
"status": "affected",
"version": "6.3.x prior to 6.3.5"
}
]
},
{
"product": "Splunk Light",
"vendor": "Splunk Inc.",
"versions": [
{
"status": "affected",
"version": "6.3.x prior to 6.3.5"
}
]
}
]Related
jvn
jvn
prion
prion
Cross site scripting
2017-05-12 18:29:00
cve
cve
CVE-2016-4856
2017-05-12 18:29:00
openvas
openvas
Splunk Enterprise 6.3.x < 6.3.5 XSS Vulnerability (SP-CAAAPN9)
2016-09-19 00:00:00
nvd
nvd
CVE-2016-4856
2017-05-12 18:29:00