Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Splunk Enterprise — Vulnerabilities & Security Advisories 161

All 161 CVE vulnerabilities found in Splunk Enterprise, with AI-generated Chinese analysis, references, and POCs.

This page catalogs known vulnerabilities for Splunk Enterprise, focusing on Common Weakness Enumerations (CWE) associated with this specific enterprise security platform. It aggregates a comprehensive list of security flaws, ranging from cross-site scripting and injection flaws to permission bypasses and authentication weaknesses, covering vulnerabilities disclosed from the product's early releases through the most recent updates. Users can utilize this resource to track vendor security advisories, understand the broader implications of specific weakness classes within the Splunk ecosystem, and review the historical vulnerability profile of the software to assess long-term risk exposure. By organizing these entries by release version and severity, the page provides a structured view of how security defects have evolved over time, allowing security professionals to identify patterns in defect injection and resolution. This historical context is essential for evaluating the current security posture of a deployment, as it highlights whether certain categories of weaknesses are recurring or if mitigation strategies have effectively reduced their prevalence. The data serves as a reference for patch prioritization and risk assessment, enabling administrators to make informed decisions about upgrade paths and configuration hardening. Whether investigating a specific incident or conducting a routine audit, this aggregation offers a transparent, vendor-neutral perspective on the security defects found in Splunk Enterprise, supporting rigorous security analysis without resorting to speculative or marketing-driven narratives.

Vendor: Splunk Inc.

CVE IDTitleCVSSSeverityPublished
CVE-2026-20298 Sensitive Information Disclosure through the storage/passwords REST Endpoint in Splunk Enterprise CWE-200 5.3 Medium2026-07-15
CVE-2026-20296 SPL Command Safeguards Bypass through Cross-Site Request Forgery (CSRF) in Deployment Server in Splunk Enterprise CWE-352 8.3 High2026-07-15
CVE-2026-20297 Path Traversal through 'explicit_appname' in the App Install REST Endpoint in Splunk Enterprise CWE-22 7.2 High2026-07-15
CVE-2026-20258 Stored Cross-Site Scripting (XSS) through Classic Dashboard in Splunk Enterprise CWE-79 7.1 High2026-06-10
CVE-2026-20253 Unauthenticated Arbitrary File Creation and Truncation in a PostgreSQL Sidecar Service Endpoint in Splunk Enterprise CWE-306 9.8 Critical2026-06-10
CVE-2026-20252 Server-Side Request Forgery (SSRF) through Dashboard Studio PDF Export in Splunk Enterprise CWE-918 7.6 High2026-06-10
CVE-2026-20257 Improper Input Validation through Classic Dashboard CSS in Splunk Enterprise CWE-20 5.7 Medium2026-06-10
CVE-2026-20259 Improper Access Control in Splunk Enterprise CWE-284 5.5 Medium2026-06-10
CVE-2026-20255 Improper Input Validation through Classic Dashboards in Splunk Enterprise CWE-20 5.7 Medium2026-06-10
CVE-2026-20251 Remote Code Execution through Deserialization of Untrusted Data in Splunk Secure Gateway CWE-502 8.8 High2026-06-10
CVE-2026-20254 Information Disclosure through External Content Restriction Bypass in Splunk Enterprise CWE-20 5.7 Medium2026-06-10
CVE-2026-20256 Improper Input Validation through Protocol-Relative URL in Classic Dashboards in Splunk Enterprise CWE-20 5.7 Medium2026-06-10
CVE-2026-20239 Sensitive Information Disclosure through Log Files in Splunk Enterprise CWE-532 7.5 High2026-05-20
CVE-2026-20240 Denial of Service through coldToFrozen.sh Script in Splunk Enterprise CWE-20 7.1 Medium2026-05-20
CVE-2026-20203 Improper Access Control in Data Model Acceleration in Splunk Enterprise CWE-284 4.3 Medium2026-04-15
CVE-2026-20204 Improper Handling and Insufficient Isolation of Specific Temporary Files in Splunk Enterprise CWE-377 7.1 High2026-04-15
CVE-2026-20202 Improper Input Validation during User Account Creation in Splunk Enterprise CWE-176 6.6 Medium2026-04-15
CVE-2026-20163 Remote Command Execution (RCE) through the '/splunkd/__upload/indexing/preview' REST endpoint in Splunk Enterprise CWE-77 8.0 High2026-03-11
CVE-2026-20162 Stored Cross-Site Scripting (XSS) through Path Traversal in Splunk Enterprise CWE-79 6.3 Medium2026-03-11
CVE-2026-20166 Sensitive Information Disclosure in Discover Splunk Observability Cloud app for Splunk Enterprise CWE-200 5.4 Medium2026-03-11
CVE-2026-20164 Sensitive Information Disclosure through Improper Access Control in Splunk Enterprise CWE-200 6.5 Medium2026-03-11
CVE-2026-20165 Sensitive Information Disclosure in MongoClient logging channel in Splunk Enterprise CWE-532 6.3 Medium2026-03-11
CVE-2026-20142 Sensitive Information Disclosure in "_internal" index in Splunk Enterprise CWE-532 6.8 Medium2026-02-18
CVE-2026-20138 Sensitive Information Disclosure in "_internal" index in Splunk Enterprise CWE-532 6.8 Medium2026-02-18
CVE-2026-20139 Client-Side Denial of Service (DoS) through ''/splunkd/__raw/services/authentication/users/username'' REST API endpoint in Splunk Enterprise CWE-400 4.3 Medium2026-02-18
CVE-2026-20144 Sensitive Information Disclosure in ''_internal'' index in Splunk Enterprise CWE-532 6.8 Medium2026-02-18
CVE-2026-20141 Improper Access Control in Splunk Monitoring Console App CWE-200 4.3 Medium2026-02-18
CVE-2026-20137 Risky Commands Safeguards Bypass through preloaded Data Models due to Path Traversal vulnerability in Splunk Enterprise CWE-200 3.5 Low2026-02-18
CVE-2025-20388 Blind Server Side Request Forgery (SSRF) through Distributed Search Peers in Splunk Enterprise CWE-918 2.7 Low2025-12-03
CVE-2025-20389 Improper Input Validation in "label" column field in Splunk Secure Gateway App CWE-20 4.3 Medium2025-12-03

All 161 known CVE vulnerabilities affecting Splunk Enterprise with full Chinese analysis, references, and POCs where available.