Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2013-7394

The "runshellscript echo.sh" script in Splunk before 5.0.5 allows remote authenticated users to execute arbitrary commands via a crafted string. NOTE: this issue was SPLIT from CVE-2013-6771 per ADT2 due to different vulnerability types.

  • Published: Aug 7, 2014
  • Updated: Apr 13, 2023
  • CVE: CVE-2013-7394
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 9
  • AV:N/AC:L/Au:S/C:C/I:C/A:C

CWEs:

Software From Fixed in
splunk / splunk 5.0.1 5.0.1.x
splunk / splunk 5.0 5.0.x
splunk / splunk 5.0.2 5.0.2.x
splunk / splunk - 5.0.4.x
splunk / splunk 5.0.3 5.0.3.x