splunk

272 tracked vulnerabilities.

CVE-2021-22926 HIGH
libcurl-using applications < - Info Disclosure
Aug 05, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-22925 MEDIUM
curl 7.7-7.77.0 - Exposure of Sensitive Information via TELNET NEW_ENV Option Parser
Aug 05, 2021
CVSS 5.3
EPSS 0.00
CVE-2021-22924 LOW
libcurl 7.10.4-7.76.1 - Connection Reuse via Case-Insensitive Path Matching
Aug 05, 2021
CVSS 3.7
EPSS 0.01
CVE-2021-22923 MEDIUM
curl - Metalink Feature - Auth Bypass
Aug 05, 2021
CVSS 5.3
EPSS 0.00
CVE-2021-22922 MEDIUM
curl 7.27.0-7.77.0 - Unauthenticated Malicious Content Retention via Metalink Hash Mismatch
Aug 05, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-30560 HIGH
Google Chrome <91.0.4472.164 - Use After Free
Aug 03, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-36976 MEDIUM
libarchive 3.4.1-3.5.1 - Use-After-Free in copy_string
Jul 20, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-22901 HIGH
curl 7.75.0-7.76.1 - Use-After-Free via TLS 1.3 Session Ticket Handling
Jun 11, 2021
CVSS 8.1
EPSS 0.00
CVE-2021-22898 LOW
curl 7.7-7.76.1 - Information Disclosure via TELNET NEW_ENV Option Parser
Jun 11, 2021
CVSS 3.1
EPSS 0.00
CVE-2021-22897 MEDIUM
curl 7.61.0-7.76.1 - Data Element Exposure via CURLOPT_SSL_CIPHER_LIST
Jun 11, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-3520 CRITICAL
Lz4 - Buffer Overflow
Jun 02, 2021
CVSS 9.8
EPSS 0.00
CVE-2021-22890 LOW
curl/libcurl 7.63.0-7.75.0 - HTTPS Proxy MITM via TLS Session Tickets
Apr 01, 2021
CVSS 3.7
EPSS 0.00
CVE-2021-22876 MEDIUM
libcurl 7.1.1-7.75.0 - Credential Leak via HTTP Referer Header
Apr 01, 2021
CVSS 5.3
EPSS 0.00
CVE-2020-8286 HIGH
libcurl 7.41.0-7.73.0 - Improper Certificate Validation via OCSP Response
Dec 14, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-8285 HIGH
libcurl 7.21.0-7.73.0 - Uncontrolled Recursion via FTP Wildcard Match Parsing
Dec 14, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-8284 LOW
curl < 7.73.0 - Exposure of Sensitive Information via FTP PASV Response
Dec 14, 2020
CVSS 3.7
EPSS 0.00
CVE-2020-8231 HIGH
libcurl 7.29.0-7.71.1 - Use-After-Free via Dangling Pointer
Dec 14, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-8177 HIGH
curl 7.20.0-7.70.0 - Arbitrary File Overwrite via -J Flag
Dec 14, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-8169 HIGH
curl 7.62.0-7.70.0 - Information Disclosure via Password Leak
Dec 14, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-14155 MEDIUM
PCRE < 8.44 - Integer Overflow via Large Number After (?C Substring
Jun 15, 2020
CVSS 5.3
EPSS 0.00
CVE-2019-20838 HIGH
PCRE < 8.43 - Out-of-bounds Read in JIT with UTF Disabled
Jun 15, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20454 HIGH
PCRE2 10.31-10.33 - Out-of-bounds Read via \X Pattern in Non-UTF Mode
Feb 14, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-3800 MEDIUM
Cloud Foundry Command Line Interface < 6.45.0 - Insufficiently Protected Credentials in Config File
Aug 05, 2019
CVSS 6.3
EPSS 0.00
CVE-2019-5729 HIGH
Splunk-SDK-Python < 1.6.6 - Improper Certificate Validation
Mar 21, 2019
CVSS 8.1
EPSS 0.00
CVE-2019-5727 MEDIUM
Splunk Enterprise 6.0.0-6.5.4 & Splunk Light <6.6.0 - Stored XSS
Feb 21, 2019
CVSS 5.4
EPSS 0.00
Products
splunk 192 splunk_cloud_platform 98 universal_forwarder 61 cloud 9 Splunk Enterprise 7 Splunk Cloud Platform 5 splunk_secure_gateway 4 add-on_builder 3 splunk_app_for_lookup_file_editing 3 Splunk MCP Server 2 Splunk Secure Gateway 2 enterprise_security 2 Splunk AI Toolkit 1 Splunk Add-on for Palo Alto Networks 1 Splunk App for SOAR 1 Splunk Supporting Add-on for Active Directory 1 cloudconnect_software_development_kit 1 hadoop_connect 1 it_service_intelligence 1 nozzle 1 soar 1 software_development_kit 1 splunk_app_for_stream 1
Quick Filters
Critical CVEs With Exploits In CISA KEV