Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
splunk splunk 6.0.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-3147
Cross-site scripting (XSS) vulnerability in the auto-complete feature in Splunk Enterprise prior to 6.0.4 allows remote authenticated users to inject arbitrary web script or HTML via a CSV file.
Splunk Splunk 6.0.1
Splunk Splunk
Splunk Splunk 6.0.0
Splunk Splunk 6.0.2
NA
CVE-2014-8303
Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 6.1.x prior to 6.1.4 and 6.0.x prior to 6.0.6 allows remote malicious users to inject arbitrary web script or HTML via vectors related to event parsing.
Splunk Splunk 6.0.3
Splunk Splunk 6.0.5
Splunk Splunk 6.1.1
Splunk Splunk 6.1.2
Splunk Splunk 6.1.3
Splunk Splunk 6.0
Splunk Splunk 6.0.1
Splunk Splunk 6.0.2
Splunk Splunk 6.0.4
Splunk Splunk 6.1
NA
CVE-2014-8302
Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 6.1.x prior to 6.1.4, 6.0.x prior to 6.0.6, and 5.0.x prior to 5.0.10 allows remote malicious users to inject arbitrary web script or HTML via vectors related to dashboard.
Splunk Splunk 5.0
Splunk Splunk 5.0.2
Splunk Splunk 5.0.9
Splunk Splunk 6.0.0
Splunk Splunk 6.0.5
Splunk Splunk 6.1.1
Splunk Splunk 6.1.3
Splunk Splunk 6.0.1
Splunk Splunk 6.0.2
Splunk Splunk 6.0.3
Splunk Splunk 6.0.4
Splunk Splunk 5.0.4
Splunk Splunk 5.0.5
Splunk Splunk 5.0.6
Splunk Splunk 5.0.7
Splunk Splunk 5.0.1
Splunk Splunk 5.0.3
Splunk Splunk 5.0.8
Splunk Splunk 6.0
Splunk Splunk 6.1
Splunk Splunk 6.1.2
NA
CVE-2014-5466
Cross-site scripting (XSS) vulnerability in the Dashboard in Splunk Web in Splunk Enterprise 6.1.x prior to 6.1.4, 6.0.x prior to 6.0.7, and 5.0.x prior to 5.0.10 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Splunk Splunk 5.0.4
Splunk Splunk 5.0.2
Splunk Splunk 6.0.2
Splunk Splunk 6.0.4
Splunk Splunk 6.1.4
Splunk Splunk 5.0.9
Splunk Splunk 5.0.8
Splunk Splunk 5.0.7
Splunk Splunk 5.0.6
Splunk Splunk 6.0.6
Splunk Splunk 6.1
Splunk Splunk 6.1.1
Splunk Splunk 6.1.2
Splunk Splunk 5.0.1
Splunk Splunk 5.0
Splunk Splunk 6.0
Splunk Splunk 6.0.1
Splunk Splunk 5.0.5
Splunk Splunk 5.0.3
Splunk Splunk 6.0.3
Splunk Splunk 6.0.5
Splunk Splunk 6.1.3
NA
CVE-2015-6515
Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 6.2.x prior to 6.2.4, 6.1.x prior to 6.1.8, 6.0.x prior to 6.0.9, and 5.0.x prior to 5.0.13 and Splunk Light 6.2.x prior to 6.2.4 allows remote malicious users to inject arbitrary web script or HTML via a...
Splunk Splunk 5.0.12
Splunk Splunk 6.0.0
Splunk Splunk 6.0.1
Splunk Splunk 6.0.2
Splunk Splunk 6.1.7
Splunk Splunk 6.2.0
Splunk Splunk 6.2.3
Splunk Splunk 6.2.2
Splunk Splunk 5.0.4
Splunk Splunk 5.0.5
Splunk Splunk 5.0.6
Splunk Splunk 5.0.7
Splunk Splunk 6.0.8
Splunk Splunk 6.1.0
Splunk Splunk 6.1.1
Splunk Splunk 6.1.2
Splunk Splunk 5.0.1
Splunk Splunk 5.0.3
Splunk Splunk 5.0.8
Splunk Splunk 5.0.10
Splunk Splunk 6.0.4
Splunk Splunk 6.0.6
4.8
CVSSv3
CVE-2016-4858
Cross-site scripting vulnerability in Splunk Enterprise 6.4.x before 6.4.2, Splunk Enterprise 6.3.x before 6.3.6, Splunk Enterprise 6.2.x before 6.2.10, Splunk Enterprise 6.1.x before 6.1.11, Splunk Enterprise 6.0.x before 6.0.12, Splunk Enterprise 5.0.x before 5.0.16 and Splunk ...
Splunk Splunk 5.0.15
Splunk Splunk 5.0.1
Splunk Splunk 5.0.0
Splunk Splunk
Splunk Splunk 6.0.11
Splunk Splunk 6.1.10
Splunk Splunk 6.1.9
Splunk Splunk 6.1.8
Splunk Splunk 6.1.7
Splunk Splunk 6.2.3
Splunk Splunk 6.2.2
Splunk Splunk 6.2.1
Splunk Splunk 6.2.0
Splunk Splunk 5.0.14
Splunk Splunk 5.0.12
Splunk Splunk 5.0.5
Splunk Splunk 5.0.3
Splunk Splunk 6.0.9
Splunk Splunk 6.0.7
Splunk Splunk 6.0.2
Splunk Splunk 6.0.0
Splunk Splunk 6.1.2
6.1
CVSSv3
CVE-2016-4859
Open redirect vulnerability in Splunk Enterprise 6.4.x before 6.4.3, Splunk Enterprise 6.3.x before 6.3.6, Splunk Enterprise 6.2.x before 6.2.10, Splunk Enterprise 6.1.x before 6.1.11, Splunk Enterprise 6.0.x before 6.0.12, Splunk Enterprise 5.0.x before 5.0.16 and Splunk Light b...
Splunk Splunk 5.0.11
Splunk Splunk 5.0.10
Splunk Splunk 5.0.9
Splunk Splunk 5.0.8
Splunk Splunk 6.0.7
Splunk Splunk 6.0.6
Splunk Splunk 6.0.5
Splunk Splunk 6.0.4
Splunk Splunk 6.1.4
Splunk Splunk 6.1.3
Splunk Splunk 6.1.0
Splunk Splunk 6.2.4
Splunk Splunk 5.0.15
Splunk Splunk 5.0.13
Splunk Splunk 5.0.6
Splunk Splunk 5.0.4
Splunk Splunk
Splunk Splunk 6.0.10
Splunk Splunk 6.0.8
Splunk Splunk 6.0.3
Splunk Splunk 6.0.1
Splunk Splunk 6.1.7
9.8
CVSSv3
CVE-2016-10126
Splunk Web in Splunk Enterprise 5.0.x prior to 5.0.17, 6.0.x prior to 6.0.13, 6.1.x prior to 6.1.12, 6.2.x prior to 6.2.12, 6.3.x prior to 6.3.8, and 6.4.x prior to 6.4.4 allows remote malicious users to conduct HTTP request injection attacks and obtain sensitive REST API authent...
Splunk Splunk 5.0.1
Splunk Splunk 5.0.10
Splunk Splunk 5.0.6
Splunk Splunk 5.0.7
Splunk Splunk 5.0.13
Splunk Splunk 5.0.14
Splunk Splunk 5.0.2
Splunk Splunk 5.0.3
Splunk Splunk 5.0.11
Splunk Splunk 5.0.12
Splunk Splunk 5.0.8
Splunk Splunk 5.0.9
Splunk Splunk 5.0.15
Splunk Splunk 5.0.16
Splunk Splunk 5.0.0
Splunk Splunk 5.0.4
Splunk Splunk 5.0.5
Splunk Splunk 6.0.9
Splunk Splunk 6.0.10
Splunk Splunk 6.0.4
Splunk Splunk 6.0.5
Splunk Splunk 6.0.0
6.5
CVSSv3
CVE-2017-5880
Splunk Web in Splunk Enterprise versions 6.5.x prior to 6.5.2, 6.4.x prior to 6.4.5, 6.3.x prior to 6.3.9, 6.2.x prior to 6.2.13, 6.1.x prior to 6.1.12, 6.0.x prior to 6.0.13, 5.0.x prior to 5.0.17 and Splunk Light versions prior to 6.5.2 allows remote authenticated users to caus...
Splunk Splunk 5.0.5
Splunk Splunk 5.0.3
Splunk Splunk 5.0.13
Splunk Splunk 5.0.11
Splunk Splunk 5.0.1
Splunk Splunk 6.0.1
Splunk Splunk 6.0.3
Splunk Splunk 6.0.10
Splunk Splunk 6.0.12
Splunk Splunk 6.1.10
Splunk Splunk 6.1.4
Splunk Splunk 6.1.6
Splunk Splunk 6.2.4
Splunk Splunk 6.2.6
Splunk Splunk 6.2.1
Splunk Splunk 6.2.2
Splunk Splunk 6.3.6
Splunk Splunk 6.3.8
Splunk Splunk 6.4.4
Splunk Splunk 6.5.1
Splunk Splunk 5.0.2
Splunk Splunk 5.0.16
9.8
CVSSv3
CVE-2022-36227
In libarchive prior to 3.6.2, the software does not check for an error after calling calloc function that can return with a NULL pointer if the function fails, which leads to a resultant NULL pointer dereference. NOTE: the discoverer cites this CWE-476 remark but third parties di...
Libarchive Libarchive
Debian Debian Linux 10.0
Fedoraproject Fedora 37
Splunk Universal Forwarder 9.1.0
Splunk Universal Forwarder
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »