exploitDog

GHSA-r8cm-7c2j-7m4r

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Splunk 4.0.0 through 4.1.4 allows remote attackers to conduct session hijacking attacks and obtain the splunkd session key via vectors related to the SPLUNKD_SESSION_KEY parameter.

Splunk 4.0.0 through 4.1.4 allows remote attackers to conduct session hijacking attacks and obtain the splunkd session key via vectors related to the SPLUNKD_SESSION_KEY parameter.

Ссылки

EPSS

Процентиль: 60%

0.00391

Низкий

CVE ID

Связанные уязвимости

CVE-2010-3323

nvd

больше 15 лет назад

Splunk 4.0.0 through 4.1.4 allows remote attackers to conduct session hijacking attacks and obtain the splunkd session key via vectors related to the SPLUNKD_SESSION_KEY parameter.

EPSS

Процентиль: 60%

0.00391

Низкий

CVE ID