CVE-2010-3323
medium
Splunk CVSS v3 Base Score
4.6
AV:N/AC:H/Au:S/C:P/I:P/A:P
EPSS Score
0.4%
Exploitation probability in 30 days
Top 40% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
High
Confidentiality
P
Integrity
P
Availability
P
Published: September 14, 2010 (5721 days ago)
Last Modified: April 29, 2026
Vendor: Splunk
Source: NVD
Vulnerability Report
Generated by CyberWatcher
Description
Splunk 4.0.0 through 4.1.4 allows remote attackers to conduct session hijacking attacks and obtain the splunkd session key via vectors related to the SPLUNKD_SESSION_KEY parameter.
CWE
NVD-CWE-OtherAffected Products
splunk splunk