Cross-Site Scripting Vulnerability in Splunk Enterprise and Splunk Light
CVE-2016-4856

4.8MEDIUM

Key Information:

Vendor

Splunk
Status
Splunk Enterprise
Splunk Light
Vendor
CVE Published:
12 May 2017

What is CVE-2016-4856?

A cross-site scripting vulnerability exists in Splunk Enterprise and Splunk Light, allowing users with administrator rights to inject arbitrary web scripts or HTML. This vulnerability affects versions prior to 6.3.5 and can be exploited through unspecified vectors, potentially enabling attackers to execute malicious scripts in the context of users’ browsers.

Affected Version(s)

Splunk Enterprise 6.3.x prior to 6.3.5

Splunk Light 6.3.x prior to 6.3.5

References

https://www.splunk.com/view/SP-CAAAPN9
x_refsource_CONFIRM
https://jvn.jp/en/jp/JVN71462075/index.html
third-party-advisoryx_refsource_JVN
http://www.securityfocus.com/bid/92990
vdb-entryx_refsource_BID

CVSS V3.1

Score:
4.8
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.