CVE-2026-20238— Improper Access Control through Role Inheritance in Splunk AI Toolkit app
Affected Version Matrix 1
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Splunk | Splunk AI Toolkit | 5.7< 5.7.3 | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-20238
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Improper Access Control through Role Inheritance in Splunk AI Toolkit app
Source: NVD (National Vulnerability Database)
Vulnerability Description
In Splunk AI Toolkit versions below 5.7.3, a low-privileged user that does not hold the 'admin' or 'power' roles could access confidential data that was restricted through `srchFilter` configurations on custom roles.<br><br>The app contains an `authorize.conf` configuration file with a `srchFilter` entry that modifies the built-in ‘user’ role. Because the Splunk platform combines inherited search filters with the `OR` SPL operator, the injected filter overrides more restrictive filters on child roles.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
授权机制不正确
Source: NVD (National Vulnerability Database)
Vulnerability Title
Splunk AI Toolkit 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Splunk AI Toolkit是Splunk公司的一个面向Splunk平台的机器学习与人工智能分析工具包。 Splunk AI Toolkit 5.7.3之前版本存在安全漏洞,该漏洞源于authorize.conf配置文件中srchFilter条目修改内置用户角色,可能导致低权限用户访问通过srchFilter配置限制的机密数据。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Splunk | Splunk AI Toolkit | 5.7 ~ 5.7.3 | - |
II. Public POCs for CVE-2026-20238
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-20238
请登录查看更多情报信息。
Vendor Advisories for CVE-2026-20238 (1)
Same Patch Batch · Splunk · 2026-05-20 · 3 CVEs total
| CVE-2026-20239 | 7.5 HIGH | Sensitive Information Disclosure through Log Files in Splunk Enterprise |
| CVE-2026-20240 | 7.1 HIGH | Denial of Service through coldToFrozen.sh Script in Splunk Enterprise |
IV. Related Vulnerabilities
Same vendor: Splunk
- CVE-2026-20239
Sensitive Information Disclosure through Log Files in Splunk - CVE-2026-20240
Denial of Service through coldToFrozen.sh Script in Splunk E - CVE-2026-20205
Sensitive Information Disclosure in ''_internal'' index in S - CVE-2026-20203
Improper Access Control in Data Model Acceleration in Splunk - CVE-2026-20204
Improper Handling and Insufficient Isolation of Specific Tem
Same weakness: CWE-863
- CVE-2024-47272
DSM Surveillance Station<9.2.2文件写入漏洞 - CVE-2026-3660
IBM Engineering Lifecycle Management - Jazz Foundation is vu - CVE-2026-44314
Traccar: Missing edit authorization on device image upload a - CVE-2026-8046
Incorrect Authorization in CODESYS Control - CVE-2018-25353
Redaxo CMS Mediapool Addon 5.5.1 Arbitrary File Upload
V. Comments for CVE-2026-20238
No comments yet