cpe:/a:splunk:splunk:4.0 cpe:/a:splunk:splunk:4.0.1 cpe:/a:splunk:splunk:4.0.2 cpe:/a:splunk:splunk:4.0.3 cpe:/a:splunk:splunk:4.0.4 cpe:/a:splunk:splunk:4.0.5 cpe:/a:splunk:splunk:4.0.6 cpe:/a:splunk:splunk:4.0.7 cpe:/a:splunk:splunk:4.0.8 cpe:/a:splunk:splunk:4.0.9 cpe:/a:splunk:splunk:4.0.10 cpe:/a:splunk:splunk:4.1 cpe:/a:splunk:splunk:4.1.1 CVE-2010-2502 2010-06-28T14:30:00.937-04:00 2010-06-29T00:00:00.000-04:00 7.5 NETWORK MEDIUM SINGLE_INSTANCE COMPLETE PARTIAL PARTIAL http://nvd.nist.gov 2010-06-29T10:59:00.000-04:00 CONFIRM http://www.splunk.com/view/SP-CAAAFGD Multiple directory traversal vulnerabilities in Splunk 4.0 through 4.0.10 and 4.1 through 4.1.1 allow (1) remote attackers to read arbitrary files, aka SPL-31194; (2) remote authenticated users to modify arbitrary files, aka SPL-31063; or (3) have an unknown impact via redirects, aka SPL-31067.