cnvd - cnvd-2016-05864

cnvd-2016-05864

Vulnerability from cnvd

Title

Splunk跨站脚本漏洞（CNVD-2016-05864）

Description

Splunk是美国Splunk公司的一套数据收集分析软件。该软件主要用于收集、索引和分析机器产生的数据，包括所有IT系统和基础结构（物理、虚拟和云）生成的数据。 Splunk中存在跨站脚本漏洞，该漏洞源于程序未能正确过滤用户提交的输入。当用户浏览被影响的网站时，其浏览器将执行攻击者提供的任意脚本代码。

Severity

中

Patch Name

Splunk跨站脚本漏洞（CNVD-2016-05864）的补丁

Patch Description

Formal description

目前厂商已经发布了升级补丁以修复此安全问题，补丁获取链接： http://www.splunk.com/view/SP-CAAAPQM

Reference

http://www.securityfocus.com/bid/92184

Impacted products

Name
['Splunk Enterprise 6.4.，<6.4.2', 'Splunk Enterprise 6.3.，<6.3.6', 'Splunk Enterprise 6.2.，<6.2.10', 'Splunk Enterprise 6.1.，<6.1.11', 'Splunk Enterprise 6.0.，<6.0.12', 'Splunk Enterprise 5.0.，<5.0.16', 'Splunk Enterprise <6.4.2']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "92184"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-4858"
    }
  },
  "description": "Splunk\u662f\u7f8e\u56fdSplunk\u516c\u53f8\u7684\u4e00\u5957\u6570\u636e\u6536\u96c6\u5206\u6790\u8f6f\u4ef6\u3002\u8be5\u8f6f\u4ef6\u4e3b\u8981\u7528\u4e8e\u6536\u96c6\u3001\u7d22\u5f15\u548c\u5206\u6790\u673a\u5668\u4ea7\u751f\u7684\u6570\u636e\uff0c\u5305\u62ec\u6240\u6709IT\u7cfb\u7edf\u548c\u57fa\u7840\u7ed3\u6784\uff08\u7269\u7406\u3001\u865a\u62df\u548c\u4e91\uff09\u751f\u6210\u7684\u6570\u636e\u3002\r\n\r\nSplunk\u4e2d\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u8fc7\u6ee4\u7528\u6237\u63d0\u4ea4\u7684\u8f93\u5165\u3002\u5f53\u7528\u6237\u6d4f\u89c8\u88ab\u5f71\u54cd\u7684\u7f51\u7ad9\u65f6\uff0c\u5176\u6d4f\u89c8\u5668\u5c06\u6267\u884c\u653b\u51fb\u8005\u63d0\u4f9b\u7684\u4efb\u610f\u811a\u672c\u4ee3\u7801\u3002",
  "discovererName": "Noriaki Iwasaki (Cyber Defense Institute, Inc.)",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttp://www.splunk.com/view/SP-CAAAPQM",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2016-05864",
  "openTime": "2016-08-02",
  "patchDescription": "Splunk\u662f\u7f8e\u56fdSplunk\u516c\u53f8\u7684\u4e00\u5957\u6570\u636e\u6536\u96c6\u5206\u6790\u8f6f\u4ef6\u3002\u8be5\u8f6f\u4ef6\u4e3b\u8981\u7528\u4e8e\u6536\u96c6\u3001\u7d22\u5f15\u548c\u5206\u6790\u673a\u5668\u4ea7\u751f\u7684\u6570\u636e\uff0c\u5305\u62ec\u6240\u6709IT\u7cfb\u7edf\u548c\u57fa\u7840\u7ed3\u6784\uff08\u7269\u7406\u3001\u865a\u62df\u548c\u4e91\uff09\u751f\u6210\u7684\u6570\u636e\u3002\r\n\r\nSplunk\u4e2d\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u8fc7\u6ee4\u7528\u6237\u63d0\u4ea4\u7684\u8f93\u5165\u3002\u5f53\u7528\u6237\u6d4f\u89c8\u88ab\u5f71\u54cd\u7684\u7f51\u7ad9\u65f6\uff0c\u5176\u6d4f\u89c8\u5668\u5c06\u6267\u884c\u653b\u51fb\u8005\u63d0\u4f9b\u7684\u4efb\u610f\u811a\u672c\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Splunk\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2016-05864\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Splunk Enterprise 6.4.*\uff0c\u003c6.4.2",
      "Splunk Enterprise 6.3.*\uff0c\u003c6.3.6",
      "Splunk Enterprise 6.2.*\uff0c\u003c6.2.10",
      "Splunk Enterprise 6.1.*\uff0c\u003c6.1.11",
      "Splunk Enterprise 6.0.*\uff0c\u003c6.0.12",
      "Splunk Enterprise 5.0.*\uff0c\u003c5.0.16",
      "Splunk Enterprise \u003c6.4.2"
    ]
  },
  "referenceLink": "http://www.securityfocus.com/bid/92184",
  "serverity": "\u4e2d",
  "submitTime": "2016-08-01",
  "title": "Splunk\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2016-05864\uff09"
}

CVE-2016-4858 (GCVE-0-2016-4858)

Vulnerability from cvelistv5

Published

2017-05-12 18:00

Modified

2024-08-06 00:46

Severity ?

CWE

Cross-site scripting

Summary

Cross-site scripting vulnerability in Splunk Enterprise 6.4.x prior to 6.4.2, Splunk Enterprise 6.3.x prior to 6.3.6, Splunk Enterprise 6.2.x prior to 6.2.10, Splunk Enterprise 6.1.x prior to 6.1.11, Splunk Enterprise 6.0.x prior to 6.0.12, Splunk Enterprise 5.0.x prior to 5.0.16 and Splunk Light prior to 6.4.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

URL

Tags

	https://www.splunk.com/view/SP-CAAAPN9	x_refsource_CONFIRM
	https://jvn.jp/en/jp/JVN71462075/index.html	third-party-advisory, x_refsource_JVN

Impacted products

Vendor

Product

Version

Splunk Inc.

Splunk Enterprise

Version: 6.4.x prior to 6.4.2
Version: 6.3.x prior to 6.3.6
Version: 6.2.x prior to 6.2.10
Version: 6.1.x prior to 6.1.11
Version: 6.0.x prior to 6.0.12
Version: 5.0.x prior to 5.0.16

Splunk Inc.

Splunk Light

Version: prior to 6.4.2

Show details on NVD website