CVE-2017-5607

Name of the Vulnerable Software and Affected Versions Splunk Enterprise versions 5.0.x through 5.0.17 Splunk Enterprise versions 6.0.x through 6.0.13 Splunk Enterprise versions 6.1.x through 6.1.12 Splunk Enterprise versions 6.2.x through 6.2.13 Splunk Enterprise versions 6.3.x through 6.3.9 Splunk Enterprise versions 6.4.x through 6.4.5 Splunk Enterprise versions 6.5.x through 6.5.2 Splunk Light versions prior to 6.5.2

Description The issue allows remote attackers to obtain sensitive logged-in username and version-related information via a crafted webpage, due to the assignment of the $C JS property to the global Window namespace.

Recommendations For Splunk Enterprise versions 5.0.x through 5.0.17, update to version 5.0.18 or later. For Splunk Enterprise versions 6.0.x through 6.0.13, update to version 6.0.14 or later. For Splunk Enterprise versions 6.1.x through 6.1.12, update to version 6.1.13 or later. For Splunk Enterprise versions 6.2.x through 6.2.13, update to version 6.2.13.1 or later. For Splunk Enterprise versions 6.3.x through 6.3.9, update to version 6.3.10 or later. For Splunk Enterprise versions 6.4.x through 6.4.5, update to version 6.4.6 or later. For Splunk Enterprise versions 6.5.x through 6.5.2, update to version 6.5.3 or later. For Splunk Light versions prior to 6.5.2, update to version 6.5.2 or later.