Denial of Service vulnerability in Splunk Web (SPL-130279)

Denial of Service vulnerability in Splunk Web (SPL-130279)

CVE-2017-5880 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:P

Splunk Web in Splunk Enterprise versions 6.5.x before 6.5.2, 6.4.x before 6.4.5, 6.3.x before 6.3.9, 6.2.x before 6.2.13, 6.1.x before 6.1.12, 6.0.x before 6.0.13, 5.0.x before 5.0.17 and Splunk Light versions before 6.5.2 allows remote authenticated users to cause a denial of service (daemon crash) via a crafted GET request, aka SPL-130279.

Learn more about our Web App Pen Testing.