Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-33845

Disclosure Date: May 06, 2022 (last updated February 23, 2025)
The Splunk Enterprise REST API allows enumeration of usernames via the lockout error message. The potential vulnerability impacts Splunk Enterprise instances before 8.1.7 when configured to repress verbose login errors.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0