Lucene search
K

244 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-36384

Malicious code in bioql PyPI...

8.1CVSS8AI score0.00547EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-36943

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00624EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-8263

Malicious code in bioql PyPI...

7.1CVSS6.4AI score0.00479EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2024-36381

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00302EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-36376

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00277EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-53390

Malicious code in bioql PyPI...

8.1CVSS8.1AI score0.00852EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-32027

Malicious code in bioql PyPI...

5.7CVSS6.6AI score0.00335EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/03 12:0 a.m.2 views

Splunk Enterprise 9.2.0 < 9.2.8, 9.3.0 < 9.3.6, 9.4.0 < 9.4.4 (SVD-2025-1001)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2025-1001 advisory. - In Splunk Enterprise versions below 9.4.4, 9.3.6, and 9.2.8, and Splunk Cloud Platform versions below 9.3.2411.111,...

6.5CVSS5.6AI score0.0041EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/10/02 10:45 p.m.10 views

CVE-2025-20369

In Splunk Enterprise versions below 9.4.4, 9.3.6, and 9.2.8, and Splunk Cloud Platform versions below 9.3.2411.108, 9.3.2408.118 and 9.2.2406.123, a low privilege user that does not hold the "admin" or "power" Splunk roles could perform an extensible markup language XML external entity XXE...

4.6CVSS7.2AI score0.00284EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/02 10:45 p.m.6 views

CVE-2025-20368

In Splunk Enterprise versions below 9.4.4, 9.3.6, and 9.2.8, and Splunk Cloud Platform versions below 9.3.2411.108, 9.3.2408.118 and 9.2.2406.123, a low privileged user that does not hold the admin or power Splunk roles could craft a malicious payload through the error messages and job inspection...

5.7CVSS6.9AI score0.00335EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/02 10:45 p.m.6 views

CVE-2025-20371

In Splunk Enterprise versions below 10.0.1, 9.4.4, 9.3.6 and 9.2.8, and Splunk Cloud Platform versions below 9.3.2411.109, 9.3.2408.119 and 9.2.2406.122, an unauthenticated attacker could trigger a blind server-side request forgery SSRF potentially letting an attacker perform REST API calls on...

7.5CVSS6.9AI score0.00437EPSS
Exploits0References1
NVD
NVD
added 2025/10/01 5:15 p.m.4 views

CVE-2025-20370

In Splunk Enterprise versions below 10.0.1, 9.4.4, 9.3.6, and 9.2.8, and Splunk Cloud Platform versions below 9.3.2411.108, 9.3.2408.118 and 9.2.2406.123, a user who holds a role that contains the high-privilege capability changeauthentication, could send multiple LDAP bind requests to a specific...

4.9CVSS0.00525EPSS
Exploits0References1
OSV
OSV
added 2025/10/01 5:15 p.m.4 views

CVE-2025-20371

In Splunk Enterprise versions below 10.0.1, 9.4.4, 9.3.6 and 9.2.8, and Splunk Cloud Platform versions below 9.3.2411.109, 9.3.2408.119 and 9.2.2406.122, an unauthenticated attacker could trigger a blind server-side request forgery SSRF potentially letting an attacker perform REST API calls on...

8.8CVSS5.8AI score0.00437EPSS
Exploits0References1
NVD
NVD
added 2025/10/01 5:15 p.m.4 views

CVE-2025-20368

In Splunk Enterprise versions below 9.4.4, 9.3.6, and 9.2.8, and Splunk Cloud Platform versions below 9.3.2411.108, 9.3.2408.118 and 9.2.2406.123, a low privileged user that does not hold the admin or power Splunk roles could craft a malicious payload through the error messages and job inspection...

5.7CVSS0.00335EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/01 4:8 p.m.2 views

CVE-2025-20367 Reflected Cross-site Scripting (XSS) in '/app/search/table' endpoint through the 'dataset.command' parameter on Splunk Enterprise

In Splunk Enterprise versions below 9.4.4, 9.3.6 and 9.2.8, and Splunk Cloud Platform versions below 9.3.2411.109, 9.3.2408.119 and 9.2.2406.122, a low-privileged user that does not hold the 'admin' or 'power' Splunk roles could craft a malicious payload through the dataset.command parameter of t...

5.7CVSS6.7AI score0.00335EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/01 4:7 p.m.2 views

CVE-2025-20366 Improper Access Control in Background Job Submission in Splunk Enterprise

In Splunk Enterprise versions below 9.4.4, 9.3.6, and 9.2.8, and Splunk Cloud Platform versions below 9.3.2411.111, 9.3.2408.119, and 9.2.2406.122, a low-privileged user that does not hold the admin or power Splunk roles could access sensitive search results if Splunk Enterprise runs an...

6.5CVSS6.1AI score0.0041EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/01 4:7 p.m.6 views

CVE-2025-20366 Improper Access Control in Background Job Submission in Splunk Enterprise

In Splunk Enterprise versions below 9.4.4, 9.3.6, and 9.2.8, and Splunk Cloud Platform versions below 9.3.2411.111, 9.3.2408.119, and 9.2.2406.122, a low-privileged user that does not hold the admin or power Splunk roles could access sensitive search results if Splunk Enterprise runs an...

6.5CVSS0.0041EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/01 12:0 a.m.5 views

PT-2025-40273

Name of the Vulnerable Software and Affected Versions Splunk Enterprise versions prior to 10.0.1 Splunk Enterprise versions 9.2.8 through 9.4.4 Splunk Cloud Platform versions prior to 9.3.2411.108 Splunk Cloud Platform versions 9.2.2406.123 through 9.3.2408.118 Description A user with the change...

4.9CVSS6.5AI score0.00525EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/10/01 12:0 a.m.5 views

PT-2025-40272

Name of the Vulnerable Software and Affected Versions Splunk Enterprise versions prior to 9.4.4 Splunk Enterprise versions 9.2.8 through 9.3.6 Splunk Cloud Platform versions prior to 9.3.2411.108 Splunk Cloud Platform versions 9.2.2406.123 through 9.3.2408.118 Description A user with limited...

4.6CVSS6.7AI score0.00284EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/01 12:0 a.m.4 views

Splunk Cloud Platform和Splunk Enterprise 资源管理错误漏洞

Splunk Cloud Platform and Splunk Enterprise are both products of Splunk Corporation, U.S.A. Splunk Cloud Platform is a powerful data collection, processing, and analytics service.Splunk Enterprise is a suite of data collection and analytics software. A resource management error vulnerability exis...

4.9CVSS6.6AI score0.00525EPSS
Exploits0References2
Rows per page
Query Builder