Splunk Enterprise response to Bash "shellshock" parsing attack (CVE-2014-6271, CVE-2014-7169)
Description: Splunk Enterprise 5.0.9, 6.0.6, 6.1.3 are not directly vulnerable in a default installation. If a Splunk Enterprise administrator installs a custom scripted alert that involves bash, an authenticated Splunk user could exploit the bash vulnerability. Custom scripted alerts may be present due to the installation of additional Splunk apps.
The appropriate fix is to apply relevant operating system patches to fix the vulnerability.
|CVSS Base Score||10.0|
|CVSS Impact Subscore||7.5|
|CVSS Exploitability Subscore||10.0|
|Overall CVSS Score||8.5|