CVE-2026-20141

In Splunk Enterprise versions below 10.0.2, 10.0.3, 9.4.8, and 9.3.9, a low-privileged user who does not hold the "admin" Splunk role could access the Splunk Monitoring Console App endpoints due to an improper access control. This could lead to a sensitive information disclosure. The Monitoring...

EUVD-2021-18456

Malware in sbrugna...

EUVD-2024-26920

Malicious code in bioql PyPI...

EUVD-2023-27037

Malicious code in bioql PyPI...

EUVD-2025-8425

Malicious code in bioql PyPI...

EUVD-2023-45154

Malicious code in bioql PyPI...

EUVD-2025-8549

Malicious code in bioql PyPI...

EUVD-2024-51915

Malicious code in bioql PyPI...

EUVD-2022-46559

Malicious code in bioql PyPI...

EUVD-2023-27040

Malicious code in bioql PyPI...

EUVD-2025-8429

Malicious code in bioql PyPI...

EUVD-2025-8263

Malicious code in bioql PyPI...

EUVD-2024-26919

Malicious code in bioql PyPI...

EUVD-2023-27036

Malicious code in bioql PyPI...

EUVD-2023-45156

Malicious code in bioql PyPI...

EUVD-2022-46558

Malicious code in bioql PyPI...

EUVD-2022-46561

Malicious code in bioql PyPI...

EUVD-2022-46566

Malicious code in bioql PyPI...

CVE-2025-20322

In Splunk Enterprise versions below 9.4.3, 9.3.5, 9.2.7, and 9.1.10, and Splunk Cloud Platform versions below 9.3.2411.104, 9.3.2408.113, and 9.2.2406.119, an unauthenticated attacker could send a specially-crafted SPL search command that could trigger a rolling restart in the Search Head Cluster...

CVE-2025-20321

In Splunk Enterprise versions below 9.4.3, 9.3.5, 9.2.7 and 9.1.10, and Splunk Cloud Platform versions below 9.3.2411.104, 9.3.2408.114, and 9.2.2406.119, an unauthenticated attacker can send a specially-crafted SPL search that could change the membership state in a Splunk Search Head Cluster SHC...