Splunk 3.4.9
Approved changes feed: RSS · Atom
cpe:2.3:a:splunk:splunk:3.4.9:*:*:*:*:*:*:*
part: a version: 3.4.9 update: *
| Vendor | Splunk (0f7ef08f-e3f5-59a4-ba5f-26afb7835b46) |
|---|---|
| Product | Splunk (22a1d8ad-9b0f-51c8-ad24-657c0c14204c) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2013-6870 |
vulnerable | 2026-06-03 14:33:32.809516 |
Details available
Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk before 5.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Published: 2013-11-25T19:00:00.000Z
Updated: 2024-09-17T01:06:10.198Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2011-4644 |
vulnerable | 2026-06-03 14:31:25.790082 |
Details available
Splunk 4.2.5 and earlier, when a Free license is selected, enables potentially undesirable functionality within an environment that intentionally does not support authentication, which allows remote attackers to (1) read arbitrary files via a management-console session that leverages the ability to create crafted data sources, or (2) execute management commands via an HTTP request.
Published: 2012-01-03T11:00:00.000Z
Updated: 2024-08-07T00:09:19.537Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.