CVE-2026-20165

🗓️ 11 Mar 2026 16:17:54Reported by ciscoType

CVE-2026-20165: Low-privilege users can access sensitive logs in Splunk via MongoClient channel.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2026-20165	11 Mar 202616:17	–	attackerkb
CNNVD	Splunk Cloud Platform和Splunk Enterprise 日志信息泄露漏洞	11 Mar 202600:00	–	cnnvd
Cvelist	CVE-2026-20165 Sensitive Information Disclosure in MongoClient logging channel in Splunk Enterprise	11 Mar 202616:17	–	cvelist
EUVD	EUVD-2026-11232	11 Mar 202618:30	–	euvd
NVD	CVE-2026-20165	11 Mar 202617:16	–	nvd
Positive Technologies	PT-2026-24737	11 Mar 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-20165	26 Mar 202615:08	–	redhatcve
Tenable Nessus	Splunk Enterprise 9.3.0 < 9.3.10, 9.4.0 < 9.4.9, 10.0.0 < 10.0.4, 10.2.0 < 10.2.1 (SVD-2026-0304)	11 Mar 202600:00	–	nessus
Vulnrichment	CVE-2026-20165 Sensitive Information Disclosure in MongoClient logging channel in Splunk Enterprise	11 Mar 202616:17	–	vulnrichment

NVD

Node

splunk splunkRange9.3.0–9.3.10enterprise

splunk splunkRange9.4.0–9.4.9enterprise

splunk splunkRange10.0.0–10.0.4enterprise

splunk splunkMatch10.2.0enterprise

Node

splunk splunk_cloud_platformRange9.3.2411–9.3.2411.124

splunk splunk_cloud_platformRange10.0.2503–10.0.2503.12

splunk splunk_cloud_platformRange10.1.2507–10.1.2507.17

splunk splunk_cloud_platformRange10.2.2510–10.2.2510.7

[
  {
    "product": "Splunk Enterprise",
    "vendor": "Splunk",
    "versions": [
      {
        "version": "10.2",
        "status": "affected",
        "versionType": "custom",
        "lessThan": "10.2.1"
      },
      {
        "version": "10.0",
        "status": "affected",
        "versionType": "custom",
        "lessThan": "10.0.4"
      },
      {
        "version": "9.4",
        "status": "affected",
        "versionType": "custom",
        "lessThan": "9.4.9"
      },
      {
        "version": "9.3",
        "status": "affected",
        "versionType": "custom",
        "lessThan": "9.3.10"
      }
    ]
  },
  {
    "product": "Splunk Cloud Platform",
    "vendor": "Splunk",
    "versions": [
      {
        "version": "10.2.2510",
        "status": "affected",
        "versionType": "custom",
        "lessThan": "10.2.2510.7"
      },
      {
        "version": "10.1.2507",
        "status": "affected",
        "versionType": "custom",
        "lessThan": "10.1.2507.17"
      },
      {
        "version": "10.0.2503",
        "status": "affected",
        "versionType": "custom",
        "lessThan": "10.0.2503.12"
      },
      {
        "version": "9.3.2411",
        "status": "affected",
        "versionType": "custom",
        "lessThan": "9.3.2411.124"
      }
    ]
  }
]

Source	Link
advisory	www.advisory.splunk.com/advisories/SVD-2026-0304

24 Mar 2026 17:55Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.16.3 - 6.5

EPSS0.00046

SSVC

CWE-532