Unrated severityNVD Advisory· Published Oct 23, 2018· Updated Aug 5, 2024
CVE-2018-7427
CVE-2018-7427
Description
Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 6.0.x before 6.0.14, 6.1.x before 6.1.13, 6.2.x before 6.2.14, 6.3.x before 6.3.10, 6.4.x before 6.4.7, and 6.5.x before 6.5.3; and Splunk Light before 6.6.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <6.0.14, <6.1.13, <6.2.14, <6.3.10, <6.4.7, <6.5.3
- Range: <6.6.0
Patches
Vulnerability mechanics
References
1- www.splunk.com/view/SP-CAAAP5Tmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.