Directory traversal vulnerability in (1) Splunk Web or the (2) Splunkd HTTP Server in Splunk Enterprise 6.1.x prior to 6.1.3 allows remote authenticated users to read arbitrary files via a .. (dot dot) in a URI, related to search ids.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
splunk splunk 6.1 |
||
splunk splunk 6.1.1 |
||
splunk splunk 6.1.2 |
Vulmon