Page 4 of 31 results (0.003 seconds)
CVSS: 9.8EPSS: 6%CPEs: 65EXPL: 4
CVSS: 9.8EPSS: 6%CPEs: 65EXPL: 4CVE-2011-4644 – Splunk - Remote Command Execution
https://notcve.org/view.php?id=CVE-2011-4644
03 Jan 2012 — Splunk 4.2.5 and earlier, when a Free license is selected, enables potentially undesirable functionality within an environment that intentionally does not support authentication, which allows remote attackers to (1) read arbitrary files via a management-console session that leverages the ability to create crafted data sources, or (2) execute management commands via an HTTP request. Splunk versión 4.2.5 y anteriores, cuando se selecciona una licencia Gratuita, habilita funciones potencialmente indeseables en... • https://www.exploit-db.com/exploits/18245 • CWE-287: Improper Authentication •