Vulnerabilities > CVE-2013-6772 - Improper Restriction of Rendered UI Layers or Frames vulnerability in Splunk

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
LOW
Availability impact
NONE
network
low complexity
splunk
CWE-1021
NVD
Published: 2020-01-23
Updated: 2020-01-27

Summary

Splunk before 5.0.4 lacks X-Frame-Options which can allow Clickjacking

Vulnerable Configurations

Part Description Count
Application
Splunk
91

Common Weakness Enumeration (CWE)

References