SPLUNK Security news

Splunk Remote attack possible due to vulnerability found in Version 6.5.1

  • Published on February 4, 2017

A vulnerability was found in Splunk up to 6.5.1 and classified as problematic. Affected by this issue is an unknown function of the component Daemon. The manipulation with an unknown input leads to a denial of service vulnerability (crash) which results in potential impact on the availability of the platform.

The weakness was presented 02/04/2017. This vulnerability is handled as CVE-2017-5880. The attack may be launched remotely. There are neither technical details nor an exploit publicly available.

Upgrading to version 6.5.2 eliminates this vulnerability.

Our team remains available to help you plan and execute your Splunk upgrades