CVE-2010-2504

Loading...

General

Score:6.0/10.0
Severity:Medium
Category:N/A

Impact Metrics

Confidentiality:Partial
Integrity:Partial
Availability:Partial

Exploitability Metrics

Access Vector:Network
Access Complexity:Medium
Authentication:Single

Published on 28/06/10 - Updated on 29/06/10

Description

Splunk 4.0 through 4.0.10 and 4.1 through 4.1.1 allows remote authenticated users to obtain sensitive information via HTTP header injection, aka SPL-31066.

Category:

There is insufficient information about the issue to classify it; details are unknown or unspecified.

Security Notices

US National Vulnerability DatabaseCVE-2010-2504

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
splunksplunk

Share this vulnerability with:

Twitter Facebook LinkedIn Mail