Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2017-17067

Splunk Web in Splunk Enterprise 7.0.x before 7.0.0.1, 6.6.x before 6.6.3.2, 6.5.x before 6.5.6, 6.4.x before 6.4.9, and 6.3.x before 6.3.12, when the SAML authType is enabled, mishandles SAML, which allows remote attackers to bypass intended access restrictions or conduct impersonation attacks.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.033
EPSS Ranking 86.8%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
Products affected by CVE-2017-17067
  • Splunk » Splunk » Version: 6.3.0
    cpe:2.3:a:splunk:splunk:6.3.0
  • Splunk » Splunk » Version: 6.3.1
    cpe:2.3:a:splunk:splunk:6.3.1
  • Splunk » Splunk » Version: 6.3.10
    cpe:2.3:a:splunk:splunk:6.3.10
  • Splunk » Splunk » Version: 6.3.11
    cpe:2.3:a:splunk:splunk:6.3.11
  • Splunk » Splunk » Version: 6.3.2
    cpe:2.3:a:splunk:splunk:6.3.2
  • Splunk » Splunk » Version: 6.3.3
    cpe:2.3:a:splunk:splunk:6.3.3
  • Splunk » Splunk » Version: 6.3.4
    cpe:2.3:a:splunk:splunk:6.3.4
  • Splunk » Splunk » Version: 6.3.5
    cpe:2.3:a:splunk:splunk:6.3.5
  • Splunk » Splunk » Version: 6.3.6
    cpe:2.3:a:splunk:splunk:6.3.6
  • Splunk » Splunk » Version: 6.3.7
    cpe:2.3:a:splunk:splunk:6.3.7
  • Splunk » Splunk » Version: 6.3.8
    cpe:2.3:a:splunk:splunk:6.3.8
  • Splunk » Splunk » Version: 6.3.9
    cpe:2.3:a:splunk:splunk:6.3.9
  • Splunk » Splunk » Version: 6.4.0
    cpe:2.3:a:splunk:splunk:6.4.0
  • Splunk » Splunk » Version: 6.4.1
    cpe:2.3:a:splunk:splunk:6.4.1
  • Splunk » Splunk » Version: 6.4.2
    cpe:2.3:a:splunk:splunk:6.4.2
  • Splunk » Splunk » Version: 6.4.3
    cpe:2.3:a:splunk:splunk:6.4.3
  • Splunk » Splunk » Version: 6.4.4
    cpe:2.3:a:splunk:splunk:6.4.4
  • Splunk » Splunk » Version: 6.4.5
    cpe:2.3:a:splunk:splunk:6.4.5
  • Splunk » Splunk » Version: 6.4.6
    cpe:2.3:a:splunk:splunk:6.4.6
  • Splunk » Splunk » Version: 6.4.7
    cpe:2.3:a:splunk:splunk:6.4.7
  • Splunk » Splunk » Version: 6.4.8
    cpe:2.3:a:splunk:splunk:6.4.8
  • Splunk » Splunk » Version: 6.5.0
    cpe:2.3:a:splunk:splunk:6.5.0
  • Splunk » Splunk » Version: 6.5.1
    cpe:2.3:a:splunk:splunk:6.5.1
  • Splunk » Splunk » Version: 6.5.2
    cpe:2.3:a:splunk:splunk:6.5.2
  • Splunk » Splunk » Version: 6.5.3
    cpe:2.3:a:splunk:splunk:6.5.3
  • Splunk » Splunk » Version: 6.5.4
    cpe:2.3:a:splunk:splunk:6.5.4
  • Splunk » Splunk » Version: 6.5.5
    cpe:2.3:a:splunk:splunk:6.5.5
  • Splunk » Splunk » Version: 6.6.0
    cpe:2.3:a:splunk:splunk:6.6.0
  • Splunk » Splunk » Version: 6.6.1
    cpe:2.3:a:splunk:splunk:6.6.1
  • Splunk » Splunk » Version: 6.6.2
    cpe:2.3:a:splunk:splunk:6.6.2
  • Splunk » Splunk » Version: 6.6.3
    cpe:2.3:a:splunk:splunk:6.6.3
  • Splunk » Splunk » Version: 7.0.0
    cpe:2.3:a:splunk:splunk:7.0.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved