CVE-2017-5880: Input Validation
First published: Sat Feb 04 2017(Updated: )
Splunk Web in Splunk Enterprise versions 6.5.x before 6.5.2, 6.4.x before 6.4.5, 6.3.x before 6.3.9, 6.2.x before 6.2.13, 6.1.x before 6.1.12, 6.0.x before 6.0.13, 5.0.x before 5.0.17 and Splunk Light versions before 6.5.2 allows remote authenticated users to cause a denial of service (daemon crash) via a crafted GET request, aka SPL-130279.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Splunk | =5.0.0 | |
| Splunk | =5.0.1 | |
| Splunk | =5.0.2 | |
| Splunk | =5.0.3 | |
| Splunk | =5.0.4 | |
| Splunk | =5.0.5 | |
| Splunk | =5.0.6 | |
| Splunk | =5.0.7 | |
| Splunk | =5.0.8 | |
| Splunk | =5.0.9 | |
| Splunk | =5.0.10 | |
| Splunk | =5.0.11 | |
| Splunk | =5.0.12 | |
| Splunk | =5.0.13 | |
| Splunk | =5.0.14 | |
| Splunk | =5.0.15 | |
| Splunk | =5.0.16 | |
| Splunk | =6.0.0 | |
| Splunk | =6.0.1 | |
| Splunk | =6.0.2 | |
| Splunk | =6.0.3 | |
| Splunk | =6.0.4 | |
| Splunk | =6.0.5 | |
| Splunk | =6.0.6 | |
| Splunk | =6.0.7 | |
| Splunk | =6.0.8 | |
| Splunk | =6.0.9 | |
| Splunk | =6.0.10 | |
| Splunk | =6.0.11 | |
| Splunk | =6.0.12 | |
| Splunk | =6.1.0 | |
| Splunk | =6.1.1 | |
| Splunk | =6.1.2 | |
| Splunk | =6.1.3 | |
| Splunk | =6.1.4 | |
| Splunk | =6.1.5 | |
| Splunk | =6.1.6 | |
| Splunk | =6.1.7 | |
| Splunk | =6.1.8 | |
| Splunk | =6.1.9 | |
| Splunk | =6.1.10 | |
| Splunk | =6.1.11 | |
| Splunk | =6.2.0 | |
| Splunk | =6.2.1 | |
| Splunk | =6.2.2 | |
| Splunk | =6.2.3 | |
| Splunk | =6.2.4 | |
| Splunk | =6.2.5 | |
| Splunk | =6.2.6 | |
| Splunk | =6.2.7 | |
| Splunk | =6.2.8 | |
| Splunk | =6.2.9 | |
| Splunk | =6.2.10 | |
| Splunk | =6.2.11 | |
| Splunk | =6.2.12 | |
| Splunk | =6.3.0 | |
| Splunk | =6.3.1 | |
| Splunk | =6.3.2 | |
| Splunk | =6.3.3 | |
| Splunk | =6.3.4 | |
| Splunk | =6.3.5 | |
| Splunk | =6.3.6 | |
| Splunk | =6.3.7 | |
| Splunk | =6.3.8 | |
| Splunk | =6.4.0 | |
| Splunk | =6.4.1 | |
| Splunk | =6.4.2 | |
| Splunk | =6.4.3 | |
| Splunk | =6.4.4 | |
| Splunk | =6.5.0 | |
| Splunk | =6.5.1 | |
| Splunk | <=6.5.1 | |
| =5.0.0 | ||
| =5.0.1 | ||
| =5.0.2 | ||
| =5.0.3 | ||
| =5.0.4 | ||
| =5.0.5 | ||
| =5.0.6 | ||
| =5.0.7 | ||
| =5.0.8 | ||
| =5.0.9 | ||
| =5.0.10 | ||
| =5.0.11 | ||
| =5.0.12 | ||
| =5.0.13 | ||
| =5.0.14 | ||
| =5.0.15 | ||
| =5.0.16 | ||
| =6.0.0 | ||
| =6.0.1 | ||
| =6.0.2 | ||
| =6.0.3 | ||
| =6.0.4 | ||
| =6.0.5 | ||
| =6.0.6 | ||
| =6.0.7 | ||
| =6.0.8 | ||
| =6.0.9 | ||
| =6.0.10 | ||
| =6.0.11 | ||
| =6.0.12 | ||
| =6.1.0 | ||
| =6.1.1 | ||
| =6.1.2 | ||
| =6.1.3 | ||
| =6.1.4 | ||
| =6.1.5 | ||
| =6.1.6 | ||
| =6.1.7 | ||
| =6.1.8 | ||
| =6.1.9 | ||
| =6.1.10 | ||
| =6.1.11 | ||
| =6.2.0 | ||
| =6.2.1 | ||
| =6.2.2 | ||
| =6.2.3 | ||
| =6.2.4 | ||
| =6.2.5 | ||
| =6.2.6 | ||
| =6.2.7 | ||
| =6.2.8 | ||
| =6.2.9 | ||
| =6.2.10 | ||
| =6.2.11 | ||
| =6.2.12 | ||
| =6.3.0 | ||
| =6.3.1 | ||
| =6.3.2 | ||
| =6.3.3 | ||
| =6.3.4 | ||
| =6.3.5 | ||
| =6.3.6 | ||
| =6.3.7 | ||
| =6.3.8 | ||
| =6.4.0 | ||
| =6.4.1 | ||
| =6.4.2 | ||
| =6.4.3 | ||
| =6.4.4 | ||
| =6.5.0 | ||
| =6.5.1 | ||
| <=6.5.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-5880?
CVE-2017-5880 has been rated as a medium severity vulnerability due to its potential to cause denial of service.
How do I fix CVE-2017-5880?
To fix CVE-2017-5880, upgrade to Splunk Enterprise versions 6.5.2 or later, and for Splunk Light, update to version 6.5.2 or later.
What versions are affected by CVE-2017-5880?
CVE-2017-5880 affects Splunk Enterprise versions prior to 6.5.2 and Splunk Light versions before 6.5.2.
What type of vulnerability is CVE-2017-5880?
CVE-2017-5880 is a denial of service vulnerability that allows authenticated users to crash the Splunk daemon.
Who is impacted by CVE-2017-5880?
Remote authenticated users of Splunk Enterprise and Splunk Light versions prior to the patched versions are impacted by CVE-2017-5880.
- agent/type
- agent/first-publish-date
- agent/remedy
- agent/weakness
- agent/severity
- agent/author
- agent/references
- agent/description
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/event
- agent/tags
- vendor/splunk
- canonical/splunk
- version/splunk/5.0.0
- version/splunk/5.0.1
- version/splunk/5.0.2
- version/splunk/5.0.3
- version/splunk/5.0.4
- version/splunk/5.0.5
- version/splunk/5.0.6
- version/splunk/5.0.7
- version/splunk/5.0.8
- version/splunk/5.0.9
- version/splunk/5.0.10
- version/splunk/5.0.11
- version/splunk/5.0.12
- version/splunk/5.0.13
- version/splunk/5.0.14
- version/splunk/5.0.15
- version/splunk/5.0.16
- version/splunk/6.0.0
- version/splunk/6.0.1
- version/splunk/6.0.2
- version/splunk/6.0.3
- version/splunk/6.0.4
- version/splunk/6.0.5
- version/splunk/6.0.6
- version/splunk/6.0.7
- version/splunk/6.0.8
- version/splunk/6.0.9
- version/splunk/6.0.10
- version/splunk/6.0.11
- version/splunk/6.0.12
- version/splunk/6.1.0
- version/splunk/6.1.1
- version/splunk/6.1.2
- version/splunk/6.1.3
- version/splunk/6.1.4
- version/splunk/6.1.5
- version/splunk/6.1.6
- version/splunk/6.1.7
- version/splunk/6.1.8
- version/splunk/6.1.9
- version/splunk/6.1.10
- version/splunk/6.1.11
- version/splunk/6.2.0
- version/splunk/6.2.1
- version/splunk/6.2.2
- version/splunk/6.2.3
- version/splunk/6.2.4
- version/splunk/6.2.5
- version/splunk/6.2.6
- version/splunk/6.2.7
- version/splunk/6.2.8
- version/splunk/6.2.9
- version/splunk/6.2.10
- version/splunk/6.2.11
- version/splunk/6.2.12
- version/splunk/6.3.0
- version/splunk/6.3.1
- version/splunk/6.3.2
- version/splunk/6.3.3
- version/splunk/6.3.4
- version/splunk/6.3.5
- version/splunk/6.3.6
- version/splunk/6.3.7
- version/splunk/6.3.8
- version/splunk/6.4.0
- version/splunk/6.4.1
- version/splunk/6.4.2
- version/splunk/6.4.3
- version/splunk/6.4.4
- version/splunk/6.5.0
- version/splunk/6.5.1