Splunk 4.2.5 and earlier, when a Free license is selected, enables potentially undesirable functionality within an environment that intentionally does not support authentication, which allows remote attackers to (1) read arbitrary files via a management-console session that leverages the ability to create crafted data sources, or (2) execute management commands via an HTTP request.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:M/Au:N/C:C/I:C/A:C
Vendors Products
Splunk
  • Splunk

Configuration 1 [-]

OR cpe:2.3:a:splunk:splunk:*:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:2.1:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:2.2:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:2.2.6:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.0:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.1:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.1.2:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.1.3:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.1.4:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.2:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.2.1:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.2.2:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.2.3:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.2.4:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.2.5:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.2.6:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.3:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.3.1:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.3.2:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.3.3:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.3.4:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.4:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.4.1:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.4.2:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.4.3:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.4.5:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.4.6:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.4.8:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.4.9:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.4.10:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.4.11:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.4.12:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.4.13:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:3.4.14:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.0:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.0.4:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.0.5:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.0.6:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.0.7:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.0.8:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.0.9:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.0.10:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.0.11:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.1:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.1.1:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.1.2:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.1.3:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.1.4:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.1.5:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.1.6:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.1.7:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.1.8:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.2:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.2.1:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.2.2:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.2.3:*:*:*:*:*:*:*
cpe:2.3:a:splunk:splunk:4.2.4:*:*:*:*:*:*:*
References
Link Resource
http://www.exploit-db.com/exploits/18245/ Exploit
http://www.sec-1.com/blog/?p=233 Exploit
http://www.sec-1.com/blog/wp-content/uploads/2011/12/Attacking_Splunk_Release.pdf Exploit
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2012-01-03T11:00:00

Updated: 2012-01-26T10:00:00

Reserved: 2011-11-30T00:00:00

Link: CVE-2011-4644

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2012-01-03T11:55:04.047

Modified: 2012-01-26T05:00:00.000

Link: CVE-2011-4644

JSON object: View

cve-icon Redhat Information

No data.

CWE