Splunk up to 6.4.2 redirect

entryeditHistoryDiffjsonxmlCTI

A vulnerability, which was classified as critical, has been found in Splunk up to 6.4.2 (Log Management Software). Affected by this issue is an unknown functionality. Upgrading to version bis 5.0.16, 6.0.12, 6.1.11, 6.2.10, 6.3.6 or 6.4.3 eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.

Field08/25/2016 11:32 AM04/02/2019 10:01 PM
cvss3_vuldb_aLL
nameSplunkSplunk
version<=5.0.15/6.0.11/6.1.10/6.2.9/6.3.5/6.4.2<=5.0.15/6.0.11/6.1.10/6.2.9/6.3.5/6.4.2
risk22
cvss2_vuldb_basescore6.86.8
cvss2_vuldb_tempscore5.95.9
cvss2_vuldb_avNN
cvss2_vuldb_acMM
cvss2_vuldb_auNN
cvss2_vuldb_ciPP
cvss2_vuldb_iiPP
cvss2_vuldb_aiPP
cvss3_meta_basescore7.37.3
cvss3_meta_tempscore7.07.0
cvss3_vuldb_basescore7.37.3
cvss3_vuldb_tempscore7.07.0
date1471824000 (08/22/2016)1471824000 (08/22/2016)
locationWebsiteWebsite
typeAdvisoryAdvisory
urlhttp://www.splunk.com/view/SP-CAAAPQ6http://www.splunk.com/view/SP-CAAAPQ6
identifierSP-CAAAPQ6 / SPL-117212SP-CAAAPQ6 / SPL-117212
coordination11
disputed00
price_0day$0-$5k$0-$5k
nameUpgradeUpgrade
date1471824000 (08/22/2016)1471824000 (08/22/2016)
upgrade_versionbis 5.0.16/6.0.12/6.1.11/6.2.10/6.3.6/6.4.3bis 5.0.16/6.0.12/6.1.11/6.2.10/6.3.6/6.4.3
sectracker10366921036692
cvss3_vuldb_uiNN
cvss2_vuldb_eNDND
cvss2_vuldb_rlOFOF
cvss2_vuldb_rcCC
cvss3_vuldb_eXX
cvss3_vuldb_rlOO
cvss3_vuldb_rcCC
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prNN
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iLL
typeLog Management Software
sectracker_date1472083200 (08/25/2016)
sectracker_causeInput validation error
cwe0601 (Redirect)

Might our Artificial Intelligence support you?

Check our Alexa App!