NVD

Id
11017  
Name
CVE-2011-4643  
Description
Multiple directory traversal vulnerabilities in Splunk 4.x before 4.2.5 allow remote authenticated users to read arbitrary files via a .. (dot dot) in a URI to (1) Splunk Web or (2) the Splunkd HTTP Server, aka SPL-45243.  
Reject
 
CVSS Version
2  
CVSS Score
4  
Severity
Medium  
CVSS Base Score
4  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:P/I:N/A:N)  
Pub Date
2017-01-07  
Published
2012-01-03  
Modified Date
2012-11-06  
Seq
2011-4643  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
61491 11017 CVE-2011-4643 18245  View
61492 11017 CVE-2011-4643 http://www.sec-1.com/blog/?p=233  View
61493 11017 CVE-2011-4643 http://www.sec-1.com/blog/wp-content/uploads/2011/12/Attacking_Splunk_Release.pdf  View
61494 11017 CVE-2011-4643 1026451  View
61495 11017 CVE-2011-4643 http://www.splunk.com/view/SP-CAAAGMM  View
61496 11017 CVE-2011-4643 splunk-splunkd-directory-traversal(72244)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
33368 JVNDB-2011-003608 Splunk におけるディレクトリトラバーサルの脆弱性 Splunk には、ディレクトリトラバーサルの脆弱性が存在します。 CVE-2011-4643 52550 CVE-2011-4643 11017 4 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-003608.html 2011-12-12 2012-01-05 View