Lucene search
K

58 matches found

Cvelist
Cvelist
added 2017/02/04 5:20 a.m.24 views

CVE-2017-5880

Splunk Web in Splunk Enterprise versions 6.5.x before 6.5.2, 6.4.x before 6.4.5, 6.3.x before 6.3.9, 6.2.x before 6.2.13, 6.1.x before 6.1.12, 6.0.x before 6.0.13, 5.0.x before 5.0.17 and Splunk Light versions before 6.5.2 allows remote authenticated users to cause a denial of service daemon cras...

6.2AI score0.01049EPSS
Exploits0References1
CVE
CVE
added 2017/02/04 5:20 a.m.65 views

CVE-2017-5880

CVE-2017-5880 affects Splunk Web in Splunk Enterprise versions 6.5.x before 6.5.2, 6.4.x before 6.4.5, 6.3.x before 6.3.9, 6.2.x before 6.2.13, 6.1.x before 6.1.12, 6.0.x before 6.0.13, 5.0.x before 5.0.17 and Splunk Light before 6.5.2. It allows remote authenticated users to cause a denial of se...

6.5CVSS6.1AI score0.01049EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2017/01/24 12:0 a.m.63 views

Splunk Light Python Vulnerabilities

Splunk Light is prone to multiple vulnerabilities in Python. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:splunk:light"; if...

10CVSS8.8AI score0.2548EPSS
Exploits7References1
OpenVAS
OpenVAS
added 2016/09/19 12:0 a.m.8 views

Splunk Light 6.3.x < 6.3.5 XSS Vulnerability

Splunk Light is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:splunk:light";...

6.6AI score
Exploits0References1
OpenVAS
OpenVAS
added 2016/09/19 12:0 a.m.64 views

Splunk Light Multiple Vulnerabilities

Splunk Light is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:splunk:light"; if description...

10CVSS8.8AI score0.89058EPSS
Exploits9References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2016/09/16 5:17 a.m.2 views

Splunk Enterprise and Splunk Light vulnerable to cross-site scripting

Overview Splunk Enterprise and Splunk Light contain a cross-site scripting vulnerability CWE-79. Note that this vulnerability is different from JVN71462075. Noriaki Iwasaki of Cyber Defense Institute, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under...

6.1CVSS6.1AI score0.00631EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2016/09/16 5:16 a.m.4 views

Splunk Enterprise and Splunk Light vulnerable to open redirect

Overview Splunk Enterprise and Splunk Light contain an open redirect vulnerability. Note that this vulnerability is different from JVN39926655. Noriaki Iwasaki of Cyber Defense Institute, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security...

6.1CVSS6.6AI score0.01432EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2016/09/16 5:8 a.m.6 views

Splunk Enterprise and Splunk Light vulnerable to open redirect

Overview Splunk Enterprise and Splunk Light contain an open redirect vulnerability. Note that this vulnerability is different from JVN64800312. Noriaki Iwasaki of Cyber Defense Institute, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security...

6.1CVSS6.6AI score0.00812EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2016/08/26 12:0 a.m.20 views

Splunk Light Open Redirection Vulnerability

Splunk Light is prone to an open redirection vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:splunk:light";...

6.1CVSS6.3AI score0.01432EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2016/08/26 12:0 a.m.11 views

Splunk Light Remote Detection

Detects the installed version of Splunk Light. This script sends an HTTP GET request and tries to get the version from the response. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7AI score
Exploits0
CNVD
CNVD
added 2015/10/04 12:0 a.m.3 views

Splunk Enterprise Cross-Site Scripting Vulnerability (CNVD-2015-06521)

Splunk Enterprise is an enterprise-grade log analytics software that runs in Unix environments. A cross-site scripting vulnerability in Splunk Enterprise version 6.2.x prior to 6.2.6 and Splunk Light version 6.2.x prior to 6.2.6 allows remote attackers to inject arbitrary web script or HTML via...

4.3CVSS6AI score0.0095EPSS
Exploits0References1
CVE
CVE
added 2015/09/29 7:0 p.m.54 views

CVE-2015-7604

The CVE-2015-7604 entry concerns Splunk Web in Splunk Enterprise 6.2.x prior to 6.2.6 and Splunk Light 6.2.x prior to 6.2.6, where an XSS flaw allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Affected component: Splunk Web in the 6.2.x line. Root cause detai...

4.3CVSS5.8AI score0.0095EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2015/08/21 12:0 a.m.2 views

Splunk Enterprise and Splunk Light Web Cross-Site Scripting Vulnerabilities

Splunk is a suite of data collection and analysis software. The software is primarily used to collect, index and analyze machine-generated data, including data generated by all IT systems and infrastructure. A cross-site scripting vulnerability exists in Splunk Enterprise and Splunk Light in the...

4.3CVSS6.2AI score0.0136EPSS
Exploits0References1
NVD
NVD
added 2015/08/18 3:59 p.m.22 views

CVE-2015-6514

Cross-site scripting XSS vulnerability in the Dashboard in Splunk Enterprise 6.2.x before 6.2.4 and Splunk Light 6.2.x before 6.2.4 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.3AI score0.0136EPSS
Exploits0References2
Prion
Prion
added 2015/08/18 3:59 p.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in Splunk Web in Splunk Enterprise 6.2.x before 6.2.4, 6.1.x before 6.1.8, 6.0.x before 6.0.9, and 5.0.x before 5.0.13 and Splunk Light 6.2.x before 6.2.4 allows remote attackers to inject arbitrary web script or HTML via a header...

4.3CVSS6.1AI score0.0136EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2015/08/18 3:0 p.m.49 views

CVE-2015-6514

CVE-2015-6514 affects the Dashboard component of Splunk Enterprise 6.2.x (before 6.2.4) and Splunk Light 6.2.x (before 6.2.4). The root cause is a Cross-Site Scripting (XSS) vulnerability that could allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. E...

4.3CVSS5.4AI score0.0136EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/08/18 3:0 p.m.23 views

CVE-2015-6514

Cross-site scripting XSS vulnerability in the Dashboard in Splunk Enterprise 6.2.x before 6.2.4 and Splunk Light 6.2.x before 6.2.4 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

5.3AI score0.0136EPSS
Exploits0References2
CNVD
CNVD
added 2015/07/18 12:0 a.m.1 views

Splunk Enterprise and Splunk Light Input Validation Cross-Site Scripting Vulnerability

Splunk is the engine of machine data. Splunk collects, indexes, and utilizes fast-moving computer data generated by all applications, servers, and devices. Splunk suffers from a cross-site scripting vulnerability that could be exploited by a remote attacker to inject malicious script or HTML code...

6AI score
Exploits0References1
Rows per page
Query Builder