The XML parser in Splunk 4.0.0 up to and including 4.1.4 allows remote authenticated users to obtain sensitive information and gain privileges via an XML External Entity (XXE) attack to unknown vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
splunk splunk |