CVE-2026-20258
- EPSS 0.17%
- Veröffentlicht 10.06.2026 17:16:23
- Zuletzt bearbeitet 15.06.2026 14:03:30
In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, and Splunk Cloud Platform versions below 10.3.2512.11, 10.2.2510.15, 10.1.2507.23, and 9.3.2411.132, a low-privileged user that does not hold the "admin" or "power" Splunk roles ...
CVE-2026-20253
- EPSS 88.17%
- Veröffentlicht 10.06.2026 17:16:21
- Zuletzt bearbeitet 16.06.2026 15:16:36
In Splunk Enterprise 10.2 versions below 10.2.4 and 10 versions below 10.0.7, an unauthenticated user could create or truncate arbitrary files through a PostgreSQL sidecar service endpoint. The vulnerability exists because the PostgreSQL sidecar serv...
CVE-2026-20252
- EPSS 0.26%
- Veröffentlicht 10.06.2026 17:16:19
- Zuletzt bearbeitet 15.06.2026 16:51:44
In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, and Splunk Cloud Platform versions below 10.4.2604.3, 10.3.2512.12, 10.2.2510.14, 10.1.2507.22, and 9.3.2411.132, a low-privileged user that does not hold the "admin" or "power" ...
CVE-2026-20257
- EPSS 0.2%
- Veröffentlicht 10.06.2026 17:16:03
- Zuletzt bearbeitet 15.06.2026 14:05:45
In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, and Splunk Cloud Platform versions below 10.3.2512.13, 10.2.2510.15, 10.1.2507.23, and 9.3.2411.132, a low-privileged user that does not hold the "admin" or "power" Splunk roles ...
CVE-2026-20259
- EPSS 0.19%
- Veröffentlicht 10.06.2026 17:16:02
- Zuletzt bearbeitet 12.06.2026 19:50:19
In Splunk Enterprise versions below 10.2.4 and 10.0.7, and Splunk Cloud Platform versions below 10.4.2604.0, 10.3.2512.12, 10.2.2510.15, 10.1.2507.23, 10.0.2503.14, and 9.3.2411.131, a user who holds a Splunk role that contains the high-privilege cap...
CVE-2026-20251
- EPSS 0.58%
- Veröffentlicht 10.06.2026 17:16:00
- Zuletzt bearbeitet 15.06.2026 17:08:59
In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, Splunk Cloud Platform versions below 10.3.2512.12, 10.2.2510.14, 10.1.2507.22, and 9.3.2411.132, and Splunk Secure Gateway versions below 3.10.6, 3.9.20, and 3.8.67, a low-privil...
CVE-2026-20255
- EPSS 0.25%
- Veröffentlicht 10.06.2026 17:16:00
- Zuletzt bearbeitet 15.06.2026 15:04:11
In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, and Splunk Cloud Platform versions below 10.3.2512.13, 10.2.2510.15, 10.1.2507.23, and 9.3.2411.132, a low-privileged user that does not hold the "admin" or "power" Splunk roles ...
CVE-2026-20254
- EPSS 0.25%
- Veröffentlicht 10.06.2026 17:15:59
- Zuletzt bearbeitet 15.06.2026 15:05:42
In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, and Splunk Cloud Platform versions below 10.3.2512.13, 10.2.2510.15, 10.1.2507.23, and 9.3.2411.132, a low-privileged user that does not hold the 'admin' or 'power' Splunk roles ...
CVE-2026-20256
- EPSS 0.25%
- Veröffentlicht 10.06.2026 17:15:55
- Zuletzt bearbeitet 15.06.2026 14:33:02
In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, and Splunk Cloud Platform versions below 10.3.2512.13, 10.2.2510.15, 10.1.2507.23, and 9.3.2411.132, a low-privileged user that does not hold the 'admin' or 'power' Splunk roles ...
CVE-2026-20239
- EPSS 0.49%
- Veröffentlicht 20.05.2026 16:32:12
- Zuletzt bearbeitet 21.05.2026 19:42:21
In Splunk Enterprise versions below 10.2.2 and 10.0.5, and Splunk Cloud Platform versions below 10.3.2512.8, 10.2.2510.11, 10.1.2507.21, and 10.0.2503.13, a user with a role that has access to the `_internal` index could view session cookies and resp...