splunk

272 tracked vulnerabilities.

CVE-2014-5198
Splunk Enterprise 6.1.x - Cross-Site Scripting via Referer HTTP Header
Aug 12, 2014
EPSS 0.00
CVE-2014-5197
Splunk Enterprise 6.1.x - Authenticated Path Traversal via URI
Aug 12, 2014
EPSS 0.00
CVE-2014-0160 HIGH KEVNUCLEI
OpenSSL 1.0.1-1.0.1f - Out-of-bounds Read via Heartbeat Extension
Apr 07, 2014
CVSS 7.5
EPSS 0.94
CVE-2014-2578
Splunk < 5.0.8 - Cross-Site Scripting
Apr 02, 2014
EPSS 0.00
CVE-2013-6773 HIGH
Splunk 5.0-5.0.3 - Privilege Escalation via Unquoted Service Path
Jan 23, 2020
CVSS 7.8
EPSS 0.00
CVE-2013-6772 MEDIUM
Splunk < 5.0.4 - Clickjacking via Missing X-Frame-Options Header
Jan 23, 2020
CVSS 4.3
EPSS 0.00
CVE-2013-7394
Splunk < 5.0.5 - Authenticated Remote Code Execution via runshellscript echo.sh
Aug 07, 2014
EPSS 0.01
CVE-2013-6771
Splunk < 5.0.5 - Remote Command Execution via Collect Script File Parameter
Aug 07, 2014
EPSS 0.04
CVE-2013-6870
Splunk < 5.0.6 - Cross-Site Scripting
Nov 25, 2013
EPSS 0.00
CVE-2013-2766
Splunk 4.3.0-4.3.5 - Cross-Site Scripting
Apr 10, 2013
EPSS 0.00
CVE-2012-6447
Splunk 5.0.0-5.0.2 - Cross-Site Scripting
Jan 23, 2014
EPSS 0.00
CVE-2012-1908
Splunk 4.0-4.3 - Cross-Site Scripting
Aug 17, 2012
EPSS 0.00
CVE-2011-4778
Splunk 4.2.x - Cross-Site Scripting
Jan 03, 2012
EPSS 0.00
CVE-2011-4644
Splunk < 4.2.5 - Unauthenticated Arbitrary File Read and Management Command Execution
Jan 03, 2012
EPSS 0.05
CVE-2011-4643
Splunk 4.x < 4.2.5 - Authenticated Path Traversal via URI
Jan 03, 2012
EPSS 0.09
CVE-2011-4642
Splunk 4.2.x - Authenticated Remote Code Execution via mappy.py Python Class Access
Jan 03, 2012
EPSS 0.19
CVE-2010-3323
Splunk 4.0.0-4.1.4 - Session Hijacking via SPLUNKD_SESSION_KEY Parameter
Sep 14, 2010
EPSS 0.00
CVE-2010-3322 HIGH
Splunk 4.0.0-4.1.4 - Authenticated XML External Entity Injection
Sep 14, 2010
CVSS 8.8
EPSS 0.01
CVE-2010-2504
Splunk <4.0.10, <4.1.1 - Info Disclosure
Jun 28, 2010
EPSS 0.00
CVE-2010-2503
Splunk 4.0-4.0.10 and 4.1-4.1.1 - Cross-Site Scripting via Redirects and User Input
Jun 28, 2010
EPSS 0.00
CVE-2010-2502
Splunk 4.0-4.0.10 and 4.1-4.1.1 - Path Traversal and Arbitrary File Read/Write
Jun 28, 2010
EPSS 0.00
CVE-2010-2429
Splunk 4.0-4.1.2 - Cross-Site Scripting via HTTP Referer Header
Jun 24, 2010
EPSS 0.00
Products
splunk 192 splunk_cloud_platform 98 universal_forwarder 61 cloud 9 Splunk Enterprise 7 Splunk Cloud Platform 5 splunk_secure_gateway 4 add-on_builder 3 splunk_app_for_lookup_file_editing 3 Splunk MCP Server 2 Splunk Secure Gateway 2 enterprise_security 2 Splunk AI Toolkit 1 Splunk Add-on for Palo Alto Networks 1 Splunk App for SOAR 1 Splunk Supporting Add-on for Active Directory 1 cloudconnect_software_development_kit 1 hadoop_connect 1 it_service_intelligence 1 nozzle 1 soar 1 software_development_kit 1 splunk_app_for_stream 1
Quick Filters
Critical CVEs With Exploits In CISA KEV