Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

splunk splunk 4.0.8 vulnerabilities and exploits

(subscribe to this query)

NA
CVE-2010-2429
Cross-site scripting (XSS) vulnerability in Splunk 4.0 through 4.1.2, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via the HTTP Referer in a "404 Not Found" response....
Splunk Splunk 4.0.8Splunk Splunk 4.0.7Splunk Splunk 4.1.2Splunk Splunk 4.1.1Splunk Splunk 4.0.10Splunk Splunk 4.0.9Splunk Splunk 4.0.2Splunk Splunk 4.0.1Splunk Splunk 4.0.6Splunk Splunk 4.0.5Splunk Splunk 4.1Splunk Splunk 4.0Splunk Splunk 4.0.11Splunk Splunk 4.0.4Splunk Splunk 4.0.3
NA
CVE-2012-1908
Cross-site scripting (XSS) vulnerability in Splunk 4.0 through 4.3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors....
Splunk Splunk 4.2.5Splunk Splunk 4.2.4Splunk Splunk 4.1Splunk Splunk 4.0.11Splunk Splunk 4.0.10Splunk Splunk 4.0.9Splunk Splunk 4.0.8Splunk Splunk 4.2.2Splunk Splunk 4.2Splunk Splunk 4.1.4Splunk Splunk 4.1.2Splunk Splunk 4.0.7Splunk Splunk 4.0.5Splunk Splunk 4.1.8Splunk Splunk 4.1.7Splunk Splunk 4.1.6Splunk Splunk 4.1.5Splunk Splunk 4.0.3Splunk Splunk 4.0.2Splunk Splunk 4.0.1Splunk Splunk 4.0Splunk Splunk 4.2.3Splunk Splunk 4.2.1Splunk Splunk 4.1.3Splunk Splunk 4.1.1Splunk Splunk 4.0.6Splunk Splunk 4.0.4
NA
CVE-2010-3323
Splunk 4.0.0 through 4.1.4 allows remote attackers to conduct session hijacking attacks and obtain the splunkd session key via vectors related to the SPLUNKD_SESSION_KEY parameter....
Splunk Splunk 4.0Splunk Splunk 4.0.11Splunk Splunk 4.1.3Splunk Splunk 4.1.4Splunk Splunk 4.1Splunk Splunk 4.1.2Splunk Splunk 4.0.8Splunk Splunk 4.0.10Splunk Splunk 4.0.2Splunk Splunk 4.0.3Splunk Splunk 4.0.4Splunk Splunk 4.0.5Splunk Splunk 4.0.6Splunk Splunk 4.1.1Splunk Splunk 4.0.1Splunk Splunk 4.0.7Splunk Splunk 4.0.9
NA
CVE-2010-2503
Multiple cross-site scripting (XSS) vulnerabilities in Splunk 4.0 through 4.0.10 and 4.1 through 4.1.1 allow remote attackers to inject arbitrary web script or HTML via (1) redirects, aka SPL-31067; (2) unspecified "user->user or user->admin" vectors, aka...
Splunk Splunk 4.0.9Splunk Splunk 4.0Splunk Splunk 4.0.1Splunk Splunk 4.0.2Splunk Splunk 4.0.7Splunk Splunk 4.0.4Splunk Splunk 4.0.6Splunk Splunk 4.0.8Splunk Splunk 4.0.10Splunk Splunk 4.0.3Splunk Splunk 4.0.5Splunk Splunk 4.1Splunk Splunk 4.1.1
NA
CVE-2011-4643
Multiple directory traversal vulnerabilities in Splunk 4.x before 4.2.5 allow remote authenticated users to read arbitrary files via a .. (dot dot) in a URI to (1) Splunk Web or (2) the Splunkd HTTP Server, aka SPL-45243....
Splunk Splunk 4.0Splunk Splunk 4.0.1Splunk Splunk 4.0.9Splunk Splunk 4.0.10Splunk Splunk 4.1.5Splunk Splunk 4.1.6Splunk Splunk 4.2.4Splunk Splunk 4.0.5Splunk Splunk 4.0.6Splunk Splunk 4.1.1Splunk Splunk 4.1.2Splunk Splunk 4.2Splunk Splunk 4.2.1Splunk Splunk 4.0.2Splunk Splunk 4.0.3Splunk Splunk 4.0.4Splunk Splunk 4.0.11Splunk Splunk 4.1Splunk Splunk 4.1.7Splunk Splunk 4.1.8Splunk Splunk 4.0.7Splunk Splunk 4.0.8Splunk Splunk 4.1.3Splunk Splunk 4.1.4Splunk Splunk 4.2.2Splunk Splunk 4.2.3
NA
CVE-2010-3322
The XML parser in Splunk 4.0.0 through 4.1.4 allows remote authenticated users to obtain sensitive information and gain privileges via an XML External Entity (XXE) attack to unknown vectors....
Splunk Splunk 4.1Splunk Splunk 4.1.1Splunk Splunk 4.0.11Splunk Splunk 4.1.3Splunk Splunk 4.1.4Splunk Splunk 4.1.2Splunk Splunk 4.0.2Splunk Splunk 4.0.10Splunk Splunk 4.0Splunk Splunk 4.0.4Splunk Splunk 4.0.5Splunk Splunk 4.0.6Splunk Splunk 4.0.8Splunk Splunk 4.0.1Splunk Splunk 4.0.3Splunk Splunk 4.0.7Splunk Splunk 4.0.9
NA
CVE-2010-2504
Splunk 4.0 through 4.0.10 and 4.1 through 4.1.1 allows remote authenticated users to obtain sensitive information via HTTP header injection, aka SPL-31066....
Splunk Splunk 4.0.1Splunk Splunk 4.0.2Splunk Splunk 4.0.3Splunk Splunk 4.0.4Splunk Splunk 4.0.8Splunk Splunk 4.0.10Splunk Splunk 4.0Splunk Splunk 4.0.5Splunk Splunk 4.0.7Splunk Splunk 4.0.9Splunk Splunk 4.0.6Splunk Splunk 4.1.1Splunk Splunk 4.1
NA
CVE-2010-2502
Multiple directory traversal vulnerabilities in Splunk 4.0 through 4.0.10 and 4.1 through 4.1.1 allow (1) remote attackers to read arbitrary files, aka SPL-31194; (2) remote authenticated users to modify arbitrary files, aka SPL-31063; or (3) have an unknown impact via...
Splunk Splunk 4.0.7Splunk Splunk 4.0.10Splunk Splunk 4.0.9Splunk Splunk 4.0Splunk Splunk 4.0.6Splunk Splunk 4.0.8Splunk Splunk 4.0.1Splunk Splunk 4.0.3Splunk Splunk 4.0.5Splunk Splunk 4.0.2Splunk Splunk 4.0.4Splunk Splunk 4.1Splunk Splunk 4.1.1
NA
CVE-2013-6870
Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk before 5.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors....
Splunk Splunk 5.0.3Splunk Splunk 5.0.1Splunk Splunk 4.3.7Splunk Splunk 5.0Splunk SplunkSplunk Splunk 5.0.4Splunk Splunk 4.2.2Splunk Splunk 4.2.1Splunk Splunk 4.2.Splunk Splunk 4.2Splunk Splunk 4.0.5Splunk Splunk 4.0.4Splunk Splunk 4.0.3Splunk Splunk 4.0.2Splunk Splunk 3.4.12Splunk Splunk 3.4.11Splunk Splunk 3.4.10Splunk Splunk 3.4.1Splunk Splunk 3.4Splunk Splunk 3.1.4Splunk Splunk 3.1.3Splunk Splunk 3.1.2Splunk Splunk 3.1.1Splunk Splunk 4.3.4Splunk Splunk 4.3.3Splunk Splunk 4.3.2Splunk Splunk 4.3.1Splunk Splunk 4.1.4Splunk Splunk 4.1.3Splunk Splunk 4.1.2Splunk Splunk 4.1.1Splunk Splunk 3.4.9Splunk Splunk 3.4.8Splunk Splunk 3.4.6Splunk Splunk 3.4.5Splunk Splunk 3.3Splunk Splunk 3.2.6Splunk Splunk 3.2.5Splunk Splunk 3.2.4Splunk Splunk 2.2.6Splunk Splunk 2.2.3Splunk Splunk 2.2.1Splunk Splunk 2.2Splunk Splunk 2.1Splunk Splunk 5.0.2Splunk Splunk 4.3.6Splunk Splunk 4.2.5Splunk Splunk 4.2.3Splunk Splunk 4.1.8Splunk Splunk 4.1.6Splunk Splunk 4.0.9Splunk Splunk 4.0.7Splunk Splunk 4.0.10Splunk Splunk 4.0Splunk Splunk 3.4.3Splunk Splunk 3.4.14Splunk Splunk 3.3.4Splunk Splunk 3.3.2Splunk Splunk 3.2.2Splunk Splunk 3.2Splunk Splunk 3.1Splunk Splunk 3.0.1Splunk Splunk 4.3.5Splunk Splunk 4.3Splunk Splunk 4.2.4Splunk Splunk 4.1.7Splunk Splunk 4.1.5Splunk Splunk 4.1Splunk Splunk 4.0.8Splunk Splunk 4.0.6Splunk Splunk 4.0.11Splunk Splunk 4.0.1Splunk Splunk 3.4.2Splunk Splunk 3.4.13Splunk Splunk 3.3.3Splunk Splunk 3.3.1Splunk Splunk 3.2.3Splunk Splunk 3.2.1Splunk Splunk 3.0.2Splunk Splunk 3.0
NA
CVE-2011-4644
Splunk 4.2.5 and earlier, when a Free license is selected, enables potentially undesirable functionality within an environment that intentionally does not support authentication, which allows remote attackers to (1) read arbitrary files via a management-console session that...
Splunk Splunk 4.1.7Splunk Splunk 4.1.6Splunk Splunk 4.1.5Splunk Splunk 4.1.4Splunk Splunk 4.0.2Splunk Splunk 4.0.1Splunk Splunk 4.0Splunk Splunk 3.4.14Splunk Splunk 3.3.3Splunk Splunk 3.3.2Splunk Splunk 3.3.1Splunk Splunk 3.3Splunk Splunk 3.0.2Splunk Splunk 3.0.1Splunk Splunk 3.0Splunk Splunk 2.2.6Splunk Splunk 2.2.3Splunk Splunk 4.2.1Splunk Splunk 4.1.8Splunk Splunk 4.1.3Splunk Splunk 4.1.1Splunk Splunk 4.0.11Splunk Splunk 4.0.6Splunk Splunk 4.0.4Splunk Splunk 3.4.12Splunk Splunk 3.4.10Splunk Splunk 3.4.3Splunk Splunk 3.4.1Splunk Splunk 3.3.4Splunk Splunk 3.2.6Splunk Splunk 3.2.4Splunk Splunk 3.1.2Splunk Splunk 3.1Splunk Splunk 2.2Splunk Splunk 4.2.4Splunk Splunk 4.2.3Splunk Splunk 4.0.10Splunk Splunk 4.0.9Splunk Splunk 4.0.8Splunk Splunk 4.0.7Splunk Splunk 3.4.9Splunk Splunk 3.4.8Splunk Splunk 3.4.6Splunk Splunk 3.4.5Splunk Splunk 3.2.2Splunk Splunk 3.2.1Splunk Splunk 3.2Splunk Splunk 3.1.4Splunk SplunkSplunk Splunk 4.2.2Splunk Splunk 4.2Splunk Splunk 4.1.2Splunk Splunk 4.1Splunk Splunk 4.0.5Splunk Splunk 4.0.3Splunk Splunk 3.4.13Splunk Splunk 3.4.11Splunk Splunk 3.4.2Splunk Splunk 3.4Splunk Splunk 3.2.5Splunk Splunk 3.2.3Splunk Splunk 3.1.3Splunk Splunk 3.1.1Splunk Splunk 2.2.1Splunk Splunk 2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-30600CVE-2022-30138HTML injectionCVE-2022-28924malicious code‎open redirectCVE-2022-1388CVE-2022-29383CVE-2020-16235
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook