splunk
284 tracked vulnerabilities.
CVE-2022-27183
HIGH
Splunk 8.1.0-8.1.4 - Reflected Cross-Site Scripting in Monitoring Console Query Parameter
May 06, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-26889
HIGH
Splunk Enterprise <8.1.2 - Path Traversal
May 06, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-26070
MEDIUM
Splunk Enterprise <8.1.0 - Info Disclosure
May 06, 2022
CVSS 4.3
EPSS 0.01
CVE-2021-31566
HIGH
libarchive < 3.5.2 - Improper Link Resolution Before File Access
Aug 23, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-42743
HIGH
Splunk < 8.1.1 - Local Privilege Escalation via Node Default Path Misconfiguration
May 06, 2022
CVSS 8.8
EPSS 0.00
CVE-2021-33845
MEDIUM
Splunk 8.1.0-8.1.7 - Username Enumeration via Lockout Error Message
May 06, 2022
CVSS 5.3
EPSS 0.01
CVE-2021-31559
HIGH
Splunk Enterprise Indexer <8.1.5, <8.2.1 - Auth Bypass
May 06, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-26253
HIGH
Splunk 8.1.0-8.1.6 - Unauthenticated MFA Bypass via DUO Implementation
May 06, 2022
CVSS 8.1
EPSS 0.01
CVE-2021-3422
HIGH
Splunk < 7.3.9, 8.0 < 8.0.9, 8.1 < 8.1.3 - Denial of Service via Splunk-to-Splunk Protocol Key-Value Field
Mar 25, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-22947
MEDIUM
curl >=7.20.0 <=7.78.0 - Info Disclosure
Sep 29, 2021
CVSS 5.9
EPSS 0.03
CVE-2021-22946
HIGH
curl >=7.20.0-7.78.0 - Info Disclosure
Sep 29, 2021
CVSS 7.5
EPSS 0.04
CVE-2021-22945
CRITICAL
libcurl <= 7.73.0, 7.78.0 - Use After Free
Sep 23, 2021
CVSS 9.1
EPSS 0.06
CVE-2021-22926
HIGH
libcurl-using applications < - Info Disclosure
Aug 05, 2021
CVSS 7.5
EPSS 0.10
CVE-2021-22925
MEDIUM
curl 7.7-7.77.0 - Exposure of Sensitive Information via TELNET NEW_ENV Option Parser
Aug 05, 2021
CVSS 5.3
EPSS 0.05
CVE-2021-22924
LOW
libcurl 7.10.4-7.76.1 - Connection Reuse via Case-Insensitive Path Matching
Aug 05, 2021
CVSS 3.7
EPSS 0.06
CVE-2021-22923
MEDIUM
curl - Metalink Feature - Auth Bypass
Aug 05, 2021
CVSS 5.3
EPSS 0.02
CVE-2021-22922
MEDIUM
curl 7.27.0-7.77.0 - Unauthenticated Malicious Content Retention via Metalink Hash Mismatch
Aug 05, 2021
CVSS 6.5
EPSS 0.04
CVE-2021-30560
HIGH
Google Chrome <91.0.4472.164 - Use After Free
Aug 03, 2021
CVSS 8.8
EPSS 0.22
CVE-2021-36976
MEDIUM
libarchive 3.4.1-3.5.1 - Use-After-Free in copy_string
Jul 20, 2021
CVSS 6.5
EPSS 0.03
CVE-2021-22901
HIGH
curl 7.75.0-7.76.1 - Use-After-Free via TLS 1.3 Session Ticket Handling
Jun 11, 2021
CVSS 8.1
EPSS 0.60
CVE-2021-22898
LOW
curl 7.7-7.76.1 - Information Disclosure via TELNET NEW_ENV Option Parser
Jun 11, 2021
CVSS 3.1
EPSS 0.04
CVE-2021-22897
MEDIUM
curl 7.61.0-7.76.1 - Data Element Exposure via CURLOPT_SSL_CIPHER_LIST
Jun 11, 2021
CVSS 5.3
EPSS 0.03
CVE-2021-3520
CRITICAL
Lz4 - Buffer Overflow
Jun 02, 2021
CVSS 9.8
EPSS 0.03
CVE-2021-22890
LOW
curl/libcurl 7.63.0-7.75.0 - HTTPS Proxy MITM via TLS Session Tickets
Apr 01, 2021
CVSS 3.7
EPSS 0.03
CVE-2021-22876
MEDIUM
libcurl 7.1.1-7.75.0 - Credential Leak via HTTP Referer Header
Apr 01, 2021
CVSS 5.3
EPSS 0.05
Products
splunk 201
splunk_cloud_platform 106
universal_forwarder 61
Splunk Enterprise 16
Splunk Cloud Platform 14
cloud 9
splunk_secure_gateway 5
Splunk AI Toolkit 3
Splunk Secure Gateway 3
add-on_builder 3
ai_toolkit 3
splunk_app_for_lookup_file_editing 3
Splunk MCP Server 2
enterprise_security 2
Splunk Add-on for Palo Alto Networks 1
Splunk App for SOAR 1
Splunk SOAR 1
Splunk Supporting Add-on for Active Directory 1
cloudconnect_software_development_kit 1
hadoop_connect 1
it_service_intelligence 1
nozzle 1
soar 1
software_development_kit 1
splunk_app_for_stream 1
Quick Filters