CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

227 matches found

NVD•added 2026/05/20 6:16 p.m.•7 views

CVE-2026-20239

In Splunk Enterprise versions below 10.2.2 and 10.0.5, and Splunk Cloud Platform versions below 10.3.2512.8, 10.2.2510.11, 10.1.2507.21, and 10.0.2503.13, a user with a role that has access to the internal index could view session cookies and response bodies that contain sensitive data...

7.5CVSS0.00014EPSS

Exploits0References1

ATTACKERKB•added 2026/05/20 4:32 p.m.•7 views

CVE-2026-20239

7.5CVSS5.8AI score0.00014EPSS

Exploits0References2Affected Software2

Cvelist•added 2026/05/20 4:32 p.m.•39 views

CVE-2026-20239 Sensitive Information Disclosure through Log Files in Splunk Enterprise

7.5CVSS0.00014EPSS

Exploits0References1

CNNVD•added 2026/05/20 12:0 a.m.•6 views

Splunk Cloud Platform和Splunk Enterprise 日志信息泄露漏洞

Splunk Cloud Platform and Splunk Enterprise are both products of the American company Splunk. Splunk Cloud Platform is a powerful service for data collection, processing, and analysis. Splunk Enterprise is a suite of software for data collection and analysis. Versions of Splunk Enterprise prior t...

7.5CVSS5.8AI score0.00014EPSS

Exploits0References1

CNNVD•added 2026/05/20 12:0 a.m.•7 views

Splunk Cloud Platform和Splunk Enterprise 输入验证错误漏洞

6.5CVSS5.8AI score0.00053EPSS

Exploits0References1

EUVD•added 2026/04/15 6:31 p.m.•1 views

EUVD-2026-22934

In Splunk Enterprise versions below 10.2.1, 10.0.5, 9.4.10, and 9.3.11, and Splunk Cloud Platform versions below 10.4.2603.0, 10.3.2512.5, 10.2.2510.9, 10.1.2507.19, 10.0.2503.13, and 9.3.2411.127, a low-privileged user that does not hold the admin or power Splunk roles could potentially perform ...

7.1CVSS5.9AI score0.00212EPSS

Exploits0References2

Vulnrichment•added 2026/04/15 3:17 p.m.•1 views

CVE-2026-20203 Improper Access Control in Data Model Acceleration in Splunk Enterprise

In Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.10, and 9.3.11, and Splunk Cloud Platform versions below 10.4.2603.0, 10.3.2512.6, 10.2.2510.10, 10.1.2507.19, 10.0.2503.13, and 9.3.2411.127, a low-privileged user that does not hold the admin or power Splunk roles, has write permission on...

4.3CVSS5.8AI score0.00036EPSS

Exploits0References1

ATTACKERKB•added 2026/04/15 3:17 p.m.•2 views

CVE-2026-20204

7.1CVSS5.9AI score0.00212EPSS

Exploits0References2Affected Software2

Cvelist•added 2026/04/15 3:17 p.m.•25 views

CVE-2026-20204 Improper Handling and Insufficient Isolation of Specific Temporary Files in Splunk Enterprise

7.1CVSS0.00212EPSS

Exploits0References1

CVE•added 2026/04/15 3:17 p.m.•59 views

CVE-2026-20204

Splunk CVE-2026-20204 affects Splunk Enterprise versions below 10.2.1, 10.0.5, 9.4.10, and 9.3.11, and Splunk Cloud Platform versions below 10.4.2603.0, 10.3.2512.5, 10.2.2510.9, 10.1.2507.19, 10.0.2503.13, and 9.3.2411.127. The issue is described as improper handling and insufficient isolation o...

7.1CVSS5.9AI score0.00212EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/04/15 3:17 p.m.•2 views

CVE-2026-20204 Improper Handling and Insufficient Isolation of Specific Temporary Files in Splunk Enterprise

7.1CVSS5.9AI score0.00212EPSS

Exploits0References1

Positive Technologies•added 2026/04/15 12:0 a.m.•0 views

PT-2026-33065

4.3CVSS5.8AI score0.00036EPSS

Exploits0References3

CNNVD•added 2026/04/15 12:0 a.m.•4 views

Splunk Cloud Platform和Splunk Enterprise 安全漏洞

6.6CVSS5.8AI score0.00059EPSS

Exploits0References1

CNNVD•added 2026/04/15 12:0 a.m.•4 views

Splunk Cloud Platform和Splunk Enterprise 安全漏洞

Splunk Cloud Platform and Splunk Enterprise are products of the American company Splunk. Splunk Cloud Platform is a powerful service for data collection, processing, and analysis. Splunk Enterprise is a suite of software for data collection and analysis. Both Splunk Cloud Platform and Splunk...

4.3CVSS5.8AI score0.00036EPSS

Exploits0References1

CNNVD•added 2026/04/15 12:0 a.m.•2 views

Splunk Cloud Platform和Splunk Enterprise 安全漏洞

7.1CVSS6.1AI score0.00212EPSS

Exploits0References1

EUVD•added 2026/03/11 6:30 p.m.•1 views

EUVD-2026-11234

In Splunk Enterprise versions below 10.2.1 and 10.0.4, and Splunk Cloud Platform versions below 10.2.2510.5, 10.1.2507.16, and 10.0.2503.12, a low-privileged user that does not hold the "admin" or "power" Splunk roles could retrieve the Observability Cloud API access token through the Discover...

5.4CVSS5.8AI score0.00043EPSS

Exploits0References2

EUVD•added 2026/03/11 6:30 p.m.•2 views

EUVD-2026-11229

In Splunk Enterprise versions below 10.2.0, 10.0.4, 9.4.9, and 9.3.10, and Splunk Cloud Platform versions below 10.2.2510.5, 10.0.2503.12, 10.1.2507.16, and 9.3.2411.124, a user who holds a role that contains the high-privilege capability editcmd could execute arbitrary shell commands using the...

7.2CVSS6AI score0.00075EPSS

Exploits0References2

Vulnrichment•added 2026/03/11 4:18 p.m.•0 views

CVE-2026-20163 Remote Command Execution (RCE) through the '/splunkd/__upload/indexing/preview' REST endpoint in Splunk Enterprise

7.2CVSS6AI score0.00075EPSS

Exploits0References1

Vulnrichment•added 2026/03/11 4:18 p.m.•0 views

CVE-2026-20162 Stored Cross-Site Scripting (XSS) through Path Traversal in Splunk Enterprise

In Splunk Enterprise versions below 10.2.0, 10.0.3, 9.4.9, and 9.3.9, and Splunk Cloud Platform versions below 10.2.2510.4, 10.1.2507.15, 10.0.2503.11, and 9.3.2411.123, a low-privileged user who does not hold the "admin" or "power" Splunk roles could craft a malicious payload when creating a Vie...

6.3CVSS5.9AI score0.00052EPSS

Exploits0References1

ATTACKERKB•added 2026/03/11 4:18 p.m.•1 views

CVE-2026-20162

6.3CVSS5.9AI score0.00052EPSS

Exploits0References2Affected Software2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by