First published: Tue Aug 18 2015(Updated: )
Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 6.2.x before 6.2.4, 6.1.x before 6.1.8, 6.0.x before 6.0.9, and 5.0.x before 5.0.13 and Splunk Light 6.2.x before 6.2.4 allows remote attackers to inject arbitrary web script or HTML via a header.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Splunk Splunk | =5.0.0 | |
Splunk Splunk | =5.0.1 | |
Splunk Splunk | =5.0.2 | |
Splunk Splunk | =5.0.3 | |
Splunk Splunk | =5.0.4 | |
Splunk Splunk | =5.0.5 | |
Splunk Splunk | =5.0.6 | |
Splunk Splunk | =5.0.7 | |
Splunk Splunk | =5.0.8 | |
Splunk Splunk | =5.0.9 | |
Splunk Splunk | =5.0.10 | |
Splunk Splunk | =5.0.11 | |
Splunk Splunk | =5.0.12 | |
Splunk Splunk | =6.0.0 | |
Splunk Splunk | =6.0.1 | |
Splunk Splunk | =6.0.2 | |
Splunk Splunk | =6.0.3 | |
Splunk Splunk | =6.0.4 | |
Splunk Splunk | =6.0.5 | |
Splunk Splunk | =6.0.6 | |
Splunk Splunk | =6.0.7 | |
Splunk Splunk | =6.0.8 | |
Splunk Splunk | =6.1.0 | |
Splunk Splunk | =6.1.1 | |
Splunk Splunk | =6.1.2 | |
Splunk Splunk | =6.1.3 | |
Splunk Splunk | =6.1.4 | |
Splunk Splunk | =6.1.5 | |
Splunk Splunk | =6.1.6 | |
Splunk Splunk | =6.1.7 | |
Splunk Splunk | =6.2.0 | |
Splunk Splunk | =6.2.0 | |
Splunk Splunk | =6.2.1 | |
Splunk Splunk | =6.2.1 | |
Splunk Splunk | =6.2.2 | |
Splunk Splunk | =6.2.2 | |
Splunk Splunk | =6.2.3 | |
Splunk Splunk | =6.2.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.