splunk

284 tracked vulnerabilities.

CVE-2022-27183 HIGH
Splunk 8.1.0-8.1.4 - Reflected Cross-Site Scripting in Monitoring Console Query Parameter
May 06, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-26889 HIGH
Splunk Enterprise <8.1.2 - Path Traversal
May 06, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-26070 MEDIUM
Splunk Enterprise <8.1.0 - Info Disclosure
May 06, 2022
CVSS 4.3
EPSS 0.01
CVE-2021-31566 HIGH
libarchive < 3.5.2 - Improper Link Resolution Before File Access
Aug 23, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-42743 HIGH
Splunk < 8.1.1 - Local Privilege Escalation via Node Default Path Misconfiguration
May 06, 2022
CVSS 8.8
EPSS 0.00
CVE-2021-33845 MEDIUM
Splunk 8.1.0-8.1.7 - Username Enumeration via Lockout Error Message
May 06, 2022
CVSS 5.3
EPSS 0.01
CVE-2021-31559 HIGH
Splunk Enterprise Indexer <8.1.5, <8.2.1 - Auth Bypass
May 06, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-26253 HIGH
Splunk 8.1.0-8.1.6 - Unauthenticated MFA Bypass via DUO Implementation
May 06, 2022
CVSS 8.1
EPSS 0.01
CVE-2021-3422 HIGH
Splunk < 7.3.9, 8.0 < 8.0.9, 8.1 < 8.1.3 - Denial of Service via Splunk-to-Splunk Protocol Key-Value Field
Mar 25, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-22947 MEDIUM
curl >=7.20.0 <=7.78.0 - Info Disclosure
Sep 29, 2021
CVSS 5.9
EPSS 0.03
CVE-2021-22946 HIGH
curl >=7.20.0-7.78.0 - Info Disclosure
Sep 29, 2021
CVSS 7.5
EPSS 0.04
CVE-2021-22945 CRITICAL
libcurl <= 7.73.0, 7.78.0 - Use After Free
Sep 23, 2021
CVSS 9.1
EPSS 0.06
CVE-2021-22926 HIGH
libcurl-using applications < - Info Disclosure
Aug 05, 2021
CVSS 7.5
EPSS 0.10
CVE-2021-22925 MEDIUM
curl 7.7-7.77.0 - Exposure of Sensitive Information via TELNET NEW_ENV Option Parser
Aug 05, 2021
CVSS 5.3
EPSS 0.05
CVE-2021-22924 LOW
libcurl 7.10.4-7.76.1 - Connection Reuse via Case-Insensitive Path Matching
Aug 05, 2021
CVSS 3.7
EPSS 0.06
CVE-2021-22923 MEDIUM
curl - Metalink Feature - Auth Bypass
Aug 05, 2021
CVSS 5.3
EPSS 0.02
CVE-2021-22922 MEDIUM
curl 7.27.0-7.77.0 - Unauthenticated Malicious Content Retention via Metalink Hash Mismatch
Aug 05, 2021
CVSS 6.5
EPSS 0.04
CVE-2021-30560 HIGH
Google Chrome <91.0.4472.164 - Use After Free
Aug 03, 2021
CVSS 8.8
EPSS 0.22
CVE-2021-36976 MEDIUM
libarchive 3.4.1-3.5.1 - Use-After-Free in copy_string
Jul 20, 2021
CVSS 6.5
EPSS 0.03
CVE-2021-22901 HIGH
curl 7.75.0-7.76.1 - Use-After-Free via TLS 1.3 Session Ticket Handling
Jun 11, 2021
CVSS 8.1
EPSS 0.60
CVE-2021-22898 LOW
curl 7.7-7.76.1 - Information Disclosure via TELNET NEW_ENV Option Parser
Jun 11, 2021
CVSS 3.1
EPSS 0.04
CVE-2021-22897 MEDIUM
curl 7.61.0-7.76.1 - Data Element Exposure via CURLOPT_SSL_CIPHER_LIST
Jun 11, 2021
CVSS 5.3
EPSS 0.03
CVE-2021-3520 CRITICAL
Lz4 - Buffer Overflow
Jun 02, 2021
CVSS 9.8
EPSS 0.03
CVE-2021-22890 LOW
curl/libcurl 7.63.0-7.75.0 - HTTPS Proxy MITM via TLS Session Tickets
Apr 01, 2021
CVSS 3.7
EPSS 0.03
CVE-2021-22876 MEDIUM
libcurl 7.1.1-7.75.0 - Credential Leak via HTTP Referer Header
Apr 01, 2021
CVSS 5.3
EPSS 0.05