Splunk Enterprise 9.1.x < 9.1.8 / 9.2.x < 9.2.5 / 9.3.x < 9.3.3 / 9.4.x < 9.4.1 Multiple Vulnerabilities (SVD-2025-0308)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities: - A vulnerability in the kjd/idna library, specifically within the idna.encode function, allows crafted input strings to cause quadratic complexity, leading to a...

EUVD-2011-4562

Malware in sbrugna...

EUVD-2017-14705

Malware in sbrugna...

EUVD-2010-2507

Malware in sbrugna...

EUVD-2024-36371

Malicious code in bioql PyPI...

EUVD-2024-51917

Malicious code in bioql PyPI...

EUVD-2023-45153

Malicious code in bioql PyPI...

EUVD-2025-16671

Malicious code in bioql PyPI...

EUVD-2024-51918

Malicious code in bioql PyPI...

EUVD-2025-20302

Malicious code in bioql PyPI...

CVE-2025-20297

In Splunk Enterprise versions below 9.4.2, 9.3.4 and 9.2.6, and Splunk Cloud Platform versions below 9.3.2411.102, 9.3.2408.111 and 9.2.2406.118, a low-privileged user that does not hold the "admin" or "power" Splunk roles could craft a malicious payload through the pdfgen/render REST endpoint th...

CVE-2010-2503

Multiple cross-site scripting XSS vulnerabilities in Splunk 4.0 through 4.0.10 and 4.1 through 4.1.1 allow remote attackers to inject arbitrary web script or HTML via 1 redirects, aka SPL-31067; 2 unspecified "user-user or user-admin" vectors, aka SPL-31084; or 3 unspecified "user input," aka...

CVE-2010-3323

Splunk 4.0.0 through 4.1.4 allows remote attackers to conduct session hijacking attacks and obtain the splunkd session key via vectors related to the SPLUNKDSESSIONKEY parameter...

CVE-2025-20230

In Splunk Enterprise versions below 9.4.1, 9.3.3, 9.2.5, and 9.1.8, and versions below 3.8.38 and 3.7.23 of the Splunk Secure Gateway app on Splunk Cloud Platform, a low-privileged user that does not hold the “admin“ or “power“ Splunk roles could edit and delete other user data in App Key Value...

PT-2025-13013 · Splunk · Splunk Cloud Platform +1

Name of the Vulnerable Software and Affected Versions: Splunk Enterprise versions prior to 9.3.3 Splunk Enterprise versions prior to 9.2.5 Splunk Enterprise versions prior to 9.1.8 Splunk Cloud Platform versions prior to 9.2.2403.108 Splunk Cloud Platform versions prior to 9.1.2312.204 Descriptio...

Vulnerabilities fixed in Splunk

Splunk developers have fixed vulnerabilities in Splunk and Splunk Enterprise. A malicious party can exploit the vulnerabilities to cause a Denial-of-Service, execute or cause to be executed arbitrary code using Command-injection, or perform a Cross-Site-Scripting attack. Such an attack could lead...

Vulnerabilities fixed in Splunk

Splunk has fixed vulnerabilities in Splunk Enterprise, Splunk Universal Forwarders and Splunk Cloud. A malicious party could vulnerabilities to exploit attacks that can lead to the following categories of damage: Cross-Site Scripting XSS Denial-of-Service DoS. Data manipulation. Remote code...

Vulnerabilities fixed in Splunk products

Vulnerabilities have been fixed in Splunk products. The vulnerabilities allow a malicious person to carry out attacks execute attacks that result in the following categories of damage: Bypassing authentication Bypassing security measure Remote code execution Administrator/Root rights Accessing...

CVE-2011-4643

Multiple directory traversal vulnerabilities in Splunk 4.x before 4.2.5 allow remote authenticated users to read arbitrary files via a .. dot dot in a URI to 1 Splunk Web or 2 the Splunkd HTTP Server, aka SPL-45243...