Search
Find a vulnerability
Search criteria
ⓘ
Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.
Related vulnerabilities
CERTFR-2026-AVI-0188
Vulnerability from certfr_avis - Published: 2026-02-19 - Updated: 2026-02-19
De multiples vulnérabilités ont été découvertes dans les produits Splunk. Certaines d'entre elles permettent à un attaquant de provoquer une élévation de privilèges, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Splunk | Splunk Cloud Platform | Splunk Cloud Platform versions 10.0.x antérieures à 10.0.2503.9 | ||
| Splunk | Universal Forwarder | Splunk Universal Forwarder versions 9.4.x antérieures à 9.4.8 | ||
| Splunk | Universal Forwarder | Splunk Universal Forwarder versions 9.3.x antérieures à 9.3.9 | ||
| Splunk | Universal Forwarder | Splunk Universal Forwarder versions 10.0.x antérieures à 10.0.3 | ||
| Splunk | Splunk Enterprise | Splunk Enterprise versions 9.3.x antérieures à 9.3.9 | ||
| Splunk | Splunk Enterprise | Splunk Enterprise versions 10.0.x antérieures à 10.0.3 | ||
| Splunk | Splunk Enterprise | Splunk Enterprise versions 9.4.x antérieures à 9.4.8 | ||
| Splunk | Splunk Enterprise | Splunk Enterprise versions 9.2.x antérieures à 9.2.12 | ||
| Splunk | Splunk DB Connect | Splunk DB Connect versions 4.2.x antérieures à 4.2.0 | ||
| Splunk | Splunk Cloud Platform | Splunk Cloud Platform versions 10.1.2507 antérieures à 10.1.2507.11 | ||
| Splunk | Splunk Cloud Platform | Splunk Cloud Platform versions 10.0.2503 antérieures à 10.0.2503.9 | ||
| Splunk | Universal Forwarder | Splunk Universal Forwarder versions 9.2.x antérieures à 9.2.12 | ||
| Splunk | Splunk Cloud Platform | Splunk Cloud Platform versions 10.2.2510 antérieures à 10.2.2510.3 | ||
| Splunk | Splunk Cloud Platform | Splunk Cloud Platform versions 9.3.2411 antérieures à 9.3.2411.121 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Splunk Cloud Platform versions 10.0.x ant\u00e9rieures \u00e0 10.0.2503.9",
"product": {
"name": "Splunk Cloud Platform",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Universal Forwarder versions 9.4.x ant\u00e9rieures \u00e0 9.4.8",
"product": {
"name": "Universal Forwarder",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Universal Forwarder versions 9.3.x ant\u00e9rieures \u00e0 9.3.9",
"product": {
"name": "Universal Forwarder",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Universal Forwarder versions 10.0.x ant\u00e9rieures \u00e0 10.0.3",
"product": {
"name": "Universal Forwarder",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Enterprise versions 9.3.x ant\u00e9rieures \u00e0 9.3.9",
"product": {
"name": "Splunk Enterprise",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Enterprise versions 10.0.x ant\u00e9rieures \u00e0 10.0.3",
"product": {
"name": "Splunk Enterprise",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Enterprise versions 9.4.x ant\u00e9rieures \u00e0 9.4.8",
"product": {
"name": "Splunk Enterprise",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Enterprise versions 9.2.x ant\u00e9rieures \u00e0 9.2.12",
"product": {
"name": "Splunk Enterprise",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk DB Connect versions 4.2.x ant\u00e9rieures \u00e0 4.2.0",
"product": {
"name": "Splunk DB Connect",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Cloud Platform versions 10.1.2507 ant\u00e9rieures \u00e0 10.1.2507.11",
"product": {
"name": "Splunk Cloud Platform",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Cloud Platform versions 10.0.2503 ant\u00e9rieures \u00e0 10.0.2503.9",
"product": {
"name": "Splunk Cloud Platform",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Universal Forwarder versions 9.2.x ant\u00e9rieures \u00e0 9.2.12",
"product": {
"name": "Universal Forwarder",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Cloud Platform versions 10.2.2510 ant\u00e9rieures \u00e0 10.2.2510.3",
"product": {
"name": "Splunk Cloud Platform",
"vendor": {
"name": "Splunk",
"scada": false
}
}
},
{
"description": "Splunk Cloud Platform versions 9.3.2411 ant\u00e9rieures \u00e0 9.3.2411.121",
"product": {
"name": "Splunk Cloud Platform",
"vendor": {
"name": "Splunk",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-58183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58183"
},
{
"name": "CVE-2026-20140",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20140"
},
{
"name": "CVE-2025-53643",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53643"
},
{
"name": "CVE-2025-0913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0913"
},
{
"name": "CVE-2025-47907",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47907"
},
{
"name": "CVE-2025-58185",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58185"
},
{
"name": "CVE-2026-20139",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20139"
},
{
"name": "CVE-2025-15284",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-15284"
},
{
"name": "CVE-2025-27210",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27210"
},
{
"name": "CVE-2025-47906",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47906"
},
{
"name": "CVE-2025-58188",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58188"
},
{
"name": "CVE-2026-20138",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20138"
},
{
"name": "CVE-2025-61724",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61724"
},
{
"name": "CVE-2025-61723",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61723"
},
{
"name": "CVE-2026-21441",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21441"
},
{
"name": "CVE-2026-20144",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20144"
},
{
"name": "CVE-2025-61725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61725"
},
{
"name": "CVE-2025-22874",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22874"
},
{
"name": "CVE-2025-47912",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47912"
},
{
"name": "CVE-2025-58186",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58186"
},
{
"name": "CVE-2025-58187",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58187"
},
{
"name": "CVE-2025-4673",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4673"
},
{
"name": "CVE-2025-22871",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22871"
},
{
"name": "CVE-2026-20143",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20143"
},
{
"name": "CVE-2025-23166",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23166"
},
{
"name": "CVE-2026-20141",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20141"
},
{
"name": "CVE-2026-20142",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20142"
},
{
"name": "CVE-2025-58189",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58189"
},
{
"name": "CVE-2025-9230",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9230"
},
{
"name": "CVE-2026-20137",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-20137"
}
],
"initial_release_date": "2026-02-19T00:00:00",
"last_revision_date": "2026-02-19T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0188",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-02-19T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Splunk. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Splunk",
"vendor_advisories": [
{
"published_at": "2026-02-18",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0210",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0210"
},
{
"published_at": "2026-02-18",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0206",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0206"
},
{
"published_at": "2026-02-18",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0204",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0204"
},
{
"published_at": "2026-02-18",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0211",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0211"
},
{
"published_at": "2026-02-18",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0202",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0202"
},
{
"published_at": "2026-02-18",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0205",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0205"
},
{
"published_at": "2026-02-18",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0203",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0203"
},
{
"published_at": "2026-02-18",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0207",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0207"
},
{
"published_at": "2026-02-18",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0209",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0209"
},
{
"published_at": "2026-02-18",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0208",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0208"
},
{
"published_at": "2026-02-18",
"title": "Bulletin de s\u00e9curit\u00e9 Splunk SVD-2026-0212",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0212"
}
]
}
NCSC-2026-0068
Vulnerability from csaf_ncscnl - Published: 2026-02-23 14:27 - Updated: 2026-02-23 14:27Summary
Kwetsbaarheden verholpen in Splunk Enterprise en Splunk Cloud Platform
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten: Splunk heeft kwetsbaarheden verholpen in Splunk Enterprise en Splunk Cloud Platform.
Interpretaties: De kwetsbaarheden bevinden zich in verschillende versies van Splunk Enterprise en Splunk Cloud Platform. Ze stellen laaggeprivilegieerde gebruikers in staat om beveiligingen te omzeilen, gevoelige informatie te bekijken, en de REST API te misbruiken voor gebruikersauthenticatie. Dit kan leiden tot ongeautoriseerde toegang en verstoring van de service. Specifieke versies van Splunk Enterprise zijn kwetsbaar voor toegang tot de Monitoring Console App endpoints en het inzien van gevoelige configuraties zoals Duo Two-Factor Authentication sleutels, RSA accessKeys, en SAML configuraties in platte tekst. Deze kwetsbaarheden kunnen de integriteit en vertrouwelijkheid van gegevens en authenticatieprocessen in gevaar brengen.
Oplossingen: Splunk heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.
Kans: medium
Schade: high
CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CWE-400: Uncontrolled Resource Consumption
CWE-532: Insertion of Sensitive Information into Log File
A vulnerability in specific versions of Splunk Enterprise and Splunk Cloud Platform allows low-privileged users to exploit a path traversal issue, bypassing SPL safeguards when creating a Data Model with an injected SPL query.
CWE-200 - Exposure of Sensitive Information to an Unauthorized ActorAffected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Splunk / Splunk Enterprise
|
vers:unknown/* |
Certain versions of Splunk Enterprise expose sensitive Duo Two-Factor Authentication keys in plain text to users with access to the `_internal` index.
6.8 (Medium)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Splunk / Splunk Enterprise
|
vers:unknown/* |
A vulnerability in certain versions of Splunk Enterprise and Splunk Cloud Platform allows low-privileged users to exploit the REST API for user authentication, potentially leading to client-side denial-of-service through crafted malicious payloads.
4.3 (Medium)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Splunk / Splunk Enterprise
|
vers:unknown/* |
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Splunk / Splunk Enterprise
|
vers:unknown/* |
A vulnerability in Splunk Enterprise versions below 10.0.2, 10.0.3, 9.4.8, and 9.3.9 allows low-privileged users to access sensitive Monitoring Console App endpoints, risking information disclosure.
4.3 (Medium)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Splunk / Splunk Enterprise
|
vers:unknown/* |
Certain versions of Splunk Enterprise expose the RSA accessKey in plain text within the Authentication.conf file for users with access to the _internal index.
6.8 (Medium)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Splunk / Splunk Enterprise
|
vers:unknown/* |
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Splunk / Splunk Enterprise
|
vers:unknown/* |
Certain versions of Splunk Enterprise and Splunk Cloud Platform expose sensitive SAML configurations in plain text within the conf.log file for users with access to the _internal index.
6.8 (Medium)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
Splunk / Splunk Enterprise
|
vers:unknown/* |
References
16 references
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Splunk heeft kwetsbaarheden verholpen in Splunk Enterprise en Splunk Cloud Platform.",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheden bevinden zich in verschillende versies van Splunk Enterprise en Splunk Cloud Platform. Ze stellen laaggeprivilegieerde gebruikers in staat om beveiligingen te omzeilen, gevoelige informatie te bekijken, en de REST API te misbruiken voor gebruikersauthenticatie. Dit kan leiden tot ongeautoriseerde toegang en verstoring van de service. Specifieke versies van Splunk Enterprise zijn kwetsbaar voor toegang tot de Monitoring Console App endpoints en het inzien van gevoelige configuraties zoals Duo Two-Factor Authentication sleutels, RSA accessKeys, en SAML configuraties in platte tekst. Deze kwetsbaarheden kunnen de integriteit en vertrouwelijkheid van gegevens en authenticatieprocessen in gevaar brengen.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Splunk heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "general",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "general",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "Insertion of Sensitive Information into Log File",
"title": "CWE-532"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0202"
},
{
"category": "external",
"summary": "Reference",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0203"
},
{
"category": "external",
"summary": "Reference",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0204"
},
{
"category": "external",
"summary": "Reference",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0205"
},
{
"category": "external",
"summary": "Reference",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0206"
},
{
"category": "external",
"summary": "Reference",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0207"
},
{
"category": "external",
"summary": "Reference",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0208"
},
{
"category": "external",
"summary": "Reference",
"url": "https://advisory.splunk.com/advisories/SVD-2026-0209"
}
],
"title": "Kwetsbaarheden verholpen in Splunk Enterprise en Splunk Cloud Platform",
"tracking": {
"current_release_date": "2026-02-23T14:27:28.865278Z",
"generator": {
"date": "2025-08-04T16:30:00Z",
"engine": {
"name": "V.A.",
"version": "1.3"
}
},
"id": "NCSC-2026-0068",
"initial_release_date": "2026-02-23T14:27:28.865278Z",
"revision_history": [
{
"date": "2026-02-23T14:27:28.865278Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-1"
}
}
],
"category": "product_name",
"name": "Splunk Enterprise"
}
],
"category": "vendor",
"name": "Splunk"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-20137",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "other",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "description",
"text": "A vulnerability in specific versions of Splunk Enterprise and Splunk Cloud Platform allows low-privileged users to exploit a path traversal issue, bypassing SPL safeguards when creating a Data Model with an injected SPL query.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-20137 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-20137.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1"
]
}
],
"title": "CVE-2026-20137"
},
{
"cve": "CVE-2026-20138",
"cwe": {
"id": "CWE-532",
"name": "Insertion of Sensitive Information into Log File"
},
"notes": [
{
"category": "other",
"text": "Insertion of Sensitive Information into Log File",
"title": "CWE-532"
},
{
"category": "description",
"text": "Certain versions of Splunk Enterprise expose sensitive Duo Two-Factor Authentication keys in plain text to users with access to the `_internal` index.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-20138 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-20138.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1"
]
}
],
"title": "CVE-2026-20138"
},
{
"cve": "CVE-2026-20139",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "A vulnerability in certain versions of Splunk Enterprise and Splunk Cloud Platform allows low-privileged users to exploit the REST API for user authentication, potentially leading to client-side denial-of-service through crafted malicious payloads.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-20139 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-20139.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1"
]
}
],
"title": "CVE-2026-20139"
},
{
"cve": "CVE-2026-20140",
"product_status": {
"known_affected": [
"CSAFPID-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-20140 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-20140.json"
}
],
"title": "CVE-2026-20140"
},
{
"cve": "CVE-2026-20141",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "description",
"text": "A vulnerability in Splunk Enterprise versions below 10.0.2, 10.0.3, 9.4.8, and 9.3.9 allows low-privileged users to access sensitive Monitoring Console App endpoints, risking information disclosure.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-20141 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-20141.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1"
]
}
],
"title": "CVE-2026-20141"
},
{
"cve": "CVE-2026-20142",
"cwe": {
"id": "CWE-532",
"name": "Insertion of Sensitive Information into Log File"
},
"notes": [
{
"category": "other",
"text": "Insertion of Sensitive Information into Log File",
"title": "CWE-532"
},
{
"category": "description",
"text": "Certain versions of Splunk Enterprise expose the RSA accessKey in plain text within the Authentication.conf file for users with access to the _internal index.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-20142 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-20142.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1"
]
}
],
"title": "CVE-2026-20142"
},
{
"cve": "CVE-2026-20143",
"product_status": {
"known_affected": [
"CSAFPID-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-20143 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-20143.json"
}
],
"title": "CVE-2026-20143"
},
{
"cve": "CVE-2026-20144",
"cwe": {
"id": "CWE-532",
"name": "Insertion of Sensitive Information into Log File"
},
"notes": [
{
"category": "other",
"text": "Insertion of Sensitive Information into Log File",
"title": "CWE-532"
},
{
"category": "description",
"text": "Certain versions of Splunk Enterprise and Splunk Cloud Platform expose sensitive SAML configurations in plain text within the conf.log file for users with access to the _internal index.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2026-20144 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2026/cve-2026-20144.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1"
]
}
],
"title": "CVE-2026-20144"
}
]
}
WID-SEC-W-2026-0457
Vulnerability from csaf_certbund - Published: 2026-02-18 23:00 - Updated: 2026-02-18 23:00Summary
Splunk Splunk Enterprise: Mehrere Schwachstellen
Severity
Mittel
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Splunk Enterprise ermöglicht Monitoring und Analyse von Clickstream-Daten und Kundentransaktionen.
Angriff: Ein Angreifer kann mehrere Schwachstellen in Splunk Splunk Enterprise ausnutzen, um Root-Rechte zu erlangen, beliebigen Code mit Systemrechten auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen oder einen Denial-of-Service-Zustand zu verursachen. Informationen.
Betroffene Betriebssysteme: - Sonstiges
- UNIX
- Windows
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Splunk Splunk Enterprise <9.2.9
Splunk / Splunk Enterprise
|
<9.2.9 | ||
|
Splunk Splunk Enterprise <9.3.7
Splunk / Splunk Enterprise
|
<9.3.7 | ||
|
Splunk Splunk Enterprise <9.4.5
Splunk / Splunk Enterprise
|
<9.4.5 | ||
|
Splunk Splunk Enterprise <10.0.3
Splunk / Splunk Enterprise
|
<10.0.3 | ||
|
Splunk Splunk Enterprise <10.2.0
Splunk / Splunk Enterprise
|
<10.2.0 | ||
|
Splunk Splunk Enterprise <10.0.2
Splunk / Splunk Enterprise
|
<10.0.2 | ||
|
Splunk Splunk Enterprise <9.3.9
Splunk / Splunk Enterprise
|
<9.3.9 |
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Splunk Splunk Enterprise <9.2.9
Splunk / Splunk Enterprise
|
<9.2.9 | ||
|
Splunk Splunk Enterprise <9.3.7
Splunk / Splunk Enterprise
|
<9.3.7 | ||
|
Splunk Splunk Enterprise <9.4.5
Splunk / Splunk Enterprise
|
<9.4.5 | ||
|
Splunk Splunk Enterprise <10.2.0
Splunk / Splunk Enterprise
|
<10.2.0 | ||
|
Splunk Splunk Enterprise <9.4.7
Splunk / Splunk Enterprise
|
<9.4.7 | ||
|
Splunk Splunk Enterprise <10.0.2
Splunk / Splunk Enterprise
|
<10.0.2 | ||
|
Splunk Splunk Enterprise <9.2.11
Splunk / Splunk Enterprise
|
<9.2.11 | ||
|
Splunk Splunk Enterprise <9.3.9
Splunk / Splunk Enterprise
|
<9.3.9 |
Affected products
Known affected
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Splunk Splunk Enterprise <9.2.9
Splunk / Splunk Enterprise
|
<9.2.9 | ||
|
Splunk Splunk Enterprise <9.3.7
Splunk / Splunk Enterprise
|
<9.3.7 | ||
|
Splunk Splunk Enterprise <9.4.5
Splunk / Splunk Enterprise
|
<9.4.5 | ||
|
Splunk Splunk Enterprise <9.2.12
Splunk / Splunk Enterprise
|
<9.2.12 | ||
|
Splunk Splunk Enterprise <9.4.8
Splunk / Splunk Enterprise
|
<9.4.8 | ||
|
Splunk Splunk Enterprise <9.3.8
Splunk / Splunk Enterprise
|
<9.3.8 | ||
|
Splunk Splunk Enterprise <10.2.0
Splunk / Splunk Enterprise
|
<10.2.0 | ||
|
Splunk Splunk Enterprise <9.4.7
Splunk / Splunk Enterprise
|
<9.4.7 | ||
|
Splunk Splunk Enterprise <10.0.2
Splunk / Splunk Enterprise
|
<10.0.2 | ||
|
Splunk Splunk Enterprise <9.2.11
Splunk / Splunk Enterprise
|
<9.2.11 | ||
|
Splunk Splunk Enterprise <9.3.9
Splunk / Splunk Enterprise
|
<9.3.9 |
Affected products
Known affected
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Splunk Splunk Enterprise <9.2.9
Splunk / Splunk Enterprise
|
<9.2.9 | ||
|
Splunk Splunk Enterprise <9.3.7
Splunk / Splunk Enterprise
|
<9.3.7 | ||
|
Splunk Splunk Enterprise <9.4.5
Splunk / Splunk Enterprise
|
<9.4.5 | ||
|
Splunk Splunk Enterprise <9.2.12
Splunk / Splunk Enterprise
|
<9.2.12 | ||
|
Splunk Splunk Enterprise <9.4.8
Splunk / Splunk Enterprise
|
<9.4.8 | ||
|
Splunk Splunk Enterprise <9.3.8
Splunk / Splunk Enterprise
|
<9.3.8 | ||
|
Splunk Splunk Enterprise <10.0.3
Splunk / Splunk Enterprise
|
<10.0.3 | ||
|
Splunk Splunk Enterprise <10.2.0
Splunk / Splunk Enterprise
|
<10.2.0 | ||
|
Splunk Splunk Enterprise <9.4.7
Splunk / Splunk Enterprise
|
<9.4.7 | ||
|
Splunk Splunk Enterprise <10.0.2
Splunk / Splunk Enterprise
|
<10.0.2 | ||
|
Splunk Splunk Enterprise <9.2.11
Splunk / Splunk Enterprise
|
<9.2.11 | ||
|
Splunk Splunk Enterprise <9.3.9
Splunk / Splunk Enterprise
|
<9.3.9 |
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Splunk Splunk Enterprise <9.3.7
Splunk / Splunk Enterprise
|
<9.3.7 | ||
|
Splunk Splunk Enterprise <9.4.5
Splunk / Splunk Enterprise
|
<9.4.5 | ||
|
Splunk Splunk Enterprise <9.4.8
Splunk / Splunk Enterprise
|
<9.4.8 | ||
|
Splunk Splunk Enterprise <9.3.8
Splunk / Splunk Enterprise
|
<9.3.8 | ||
|
Splunk Splunk Enterprise <10.0.3
Splunk / Splunk Enterprise
|
<10.0.3 | ||
|
Splunk Splunk Enterprise <9.4.7
Splunk / Splunk Enterprise
|
<9.4.7 | ||
|
Splunk Splunk Enterprise <10.0.2
Splunk / Splunk Enterprise
|
<10.0.2 | ||
|
Splunk Splunk Enterprise <9.3.9
Splunk / Splunk Enterprise
|
<9.3.9 |
Affected products
Known affected
9 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Splunk Splunk Enterprise <9.2.9
Splunk / Splunk Enterprise
|
<9.2.9 | ||
|
Splunk Splunk Enterprise <9.3.7
Splunk / Splunk Enterprise
|
<9.3.7 | ||
|
Splunk Splunk Enterprise <9.4.5
Splunk / Splunk Enterprise
|
<9.4.5 | ||
|
Splunk Splunk Enterprise <9.3.8
Splunk / Splunk Enterprise
|
<9.3.8 | ||
|
Splunk Splunk Enterprise <10.2.0
Splunk / Splunk Enterprise
|
<10.2.0 | ||
|
Splunk Splunk Enterprise <9.4.7
Splunk / Splunk Enterprise
|
<9.4.7 | ||
|
Splunk Splunk Enterprise <10.0.2
Splunk / Splunk Enterprise
|
<10.0.2 | ||
|
Splunk Splunk Enterprise <9.2.11
Splunk / Splunk Enterprise
|
<9.2.11 | ||
|
Splunk Splunk Enterprise <9.3.9
Splunk / Splunk Enterprise
|
<9.3.9 |
Affected products
Known affected
9 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Splunk Splunk Enterprise <9.3.7
Splunk / Splunk Enterprise
|
<9.3.7 | ||
|
Splunk Splunk Enterprise <9.4.5
Splunk / Splunk Enterprise
|
<9.4.5 | ||
|
Splunk Splunk Enterprise <9.4.8
Splunk / Splunk Enterprise
|
<9.4.8 | ||
|
Splunk Splunk Enterprise <9.3.8
Splunk / Splunk Enterprise
|
<9.3.8 | ||
|
Splunk Splunk Enterprise <10.0.3
Splunk / Splunk Enterprise
|
<10.0.3 | ||
|
Splunk Splunk Enterprise <10.2.0
Splunk / Splunk Enterprise
|
<10.2.0 | ||
|
Splunk Splunk Enterprise <9.4.7
Splunk / Splunk Enterprise
|
<9.4.7 | ||
|
Splunk Splunk Enterprise <10.0.2
Splunk / Splunk Enterprise
|
<10.0.2 | ||
|
Splunk Splunk Enterprise <9.3.9
Splunk / Splunk Enterprise
|
<9.3.9 |
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Splunk Splunk Enterprise <9.2.9
Splunk / Splunk Enterprise
|
<9.2.9 | ||
|
Splunk Splunk Enterprise <9.3.7
Splunk / Splunk Enterprise
|
<9.3.7 | ||
|
Splunk Splunk Enterprise <9.4.5
Splunk / Splunk Enterprise
|
<9.4.5 | ||
|
Splunk Splunk Enterprise <9.3.8
Splunk / Splunk Enterprise
|
<9.3.8 | ||
|
Splunk Splunk Enterprise <10.2.0
Splunk / Splunk Enterprise
|
<10.2.0 | ||
|
Splunk Splunk Enterprise <9.4.7
Splunk / Splunk Enterprise
|
<9.4.7 | ||
|
Splunk Splunk Enterprise <10.0.2
Splunk / Splunk Enterprise
|
<10.0.2 | ||
|
Splunk Splunk Enterprise <9.2.11
Splunk / Splunk Enterprise
|
<9.2.11 |
References
10 references
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Splunk Enterprise erm\u00f6glicht Monitoring und Analyse von Clickstream-Daten und Kundentransaktionen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in Splunk Splunk Enterprise ausnutzen, um Root-Rechte zu erlangen, beliebigen Code mit Systemrechten auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen oder einen Denial-of-Service-Zustand zu verursachen. Informationen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2026-0457 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0457.json"
},
{
"category": "self",
"summary": "WID-SEC-2026-0457 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0457"
},
{
"category": "external",
"summary": "Splunk Security Advisories vom 2026-02-18",
"url": "https://advisory.splunk.com//advisories/SVD-2026-0202"
},
{
"category": "external",
"summary": "Splunk Security Advisories vom 2026-02-18",
"url": "https://advisory.splunk.com//advisories/SVD-2026-0203"
},
{
"category": "external",
"summary": "Splunk Security Advisories vom 2026-02-18",
"url": "https://advisory.splunk.com//advisories/SVD-2026-0204"
},
{
"category": "external",
"summary": "Splunk Security Advisories vom 2026-02-18",
"url": "https://advisory.splunk.com//advisories/SVD-2026-0205"
},
{
"category": "external",
"summary": "Splunk Security Advisories vom 2026-02-18",
"url": "https://advisory.splunk.com//advisories/SVD-2026-0206"
},
{
"category": "external",
"summary": "Splunk Security Advisories vom 2026-02-18",
"url": "https://advisory.splunk.com//advisories/SVD-2026-0207"
},
{
"category": "external",
"summary": "Splunk Security Advisories vom 2026-02-18",
"url": "https://advisory.splunk.com//advisories/SVD-2026-0208"
},
{
"category": "external",
"summary": "Splunk Security Advisories vom 2026-02-18",
"url": "https://advisory.splunk.com//advisories/SVD-2026-0209"
}
],
"source_lang": "en-US",
"title": "Splunk Splunk Enterprise: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-02-18T23:00:00.000+00:00",
"generator": {
"date": "2026-02-19T11:43:27.897+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.5.0"
}
},
"id": "WID-SEC-W-2026-0457",
"initial_release_date": "2026-02-18T23:00:00.000+00:00",
"revision_history": [
{
"date": "2026-02-18T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.2.0",
"product": {
"name": "Splunk Splunk Enterprise \u003c10.2.0",
"product_id": "T051006"
}
},
{
"category": "product_version",
"name": "10.2.0",
"product": {
"name": "Splunk Splunk Enterprise 10.2.0",
"product_id": "T051006-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:splunk:splunk:10.2.0"
}
}
},
{
"category": "product_version_range",
"name": "\u003c10.0.3",
"product": {
"name": "Splunk Splunk Enterprise \u003c10.0.3",
"product_id": "T051007"
}
},
{
"category": "product_version",
"name": "10.0.3",
"product": {
"name": "Splunk Splunk Enterprise 10.0.3",
"product_id": "T051007-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:splunk:splunk:10.0.3"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.4.5",
"product": {
"name": "Splunk Splunk Enterprise \u003c9.4.5",
"product_id": "T051008"
}
},
{
"category": "product_version",
"name": "9.4.5",
"product": {
"name": "Splunk Splunk Enterprise 9.4.5",
"product_id": "T051008-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:splunk:splunk:9.4.5"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.3.7",
"product": {
"name": "Splunk Splunk Enterprise \u003c9.3.7",
"product_id": "T051009"
}
},
{
"category": "product_version",
"name": "9.3.7",
"product": {
"name": "Splunk Splunk Enterprise 9.3.7",
"product_id": "T051009-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:splunk:splunk:9.3.7"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.2.9",
"product": {
"name": "Splunk Splunk Enterprise \u003c9.2.9",
"product_id": "T051010"
}
},
{
"category": "product_version",
"name": "9.2.9",
"product": {
"name": "Splunk Splunk Enterprise 9.2.9",
"product_id": "T051010-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:splunk:splunk:9.2.9"
}
}
},
{
"category": "product_version_range",
"name": "\u003c10.0.2",
"product": {
"name": "Splunk Splunk Enterprise \u003c10.0.2",
"product_id": "T051011"
}
},
{
"category": "product_version",
"name": "10.0.2",
"product": {
"name": "Splunk Splunk Enterprise 10.0.2",
"product_id": "T051011-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:splunk:splunk:10.0.2"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.4.7",
"product": {
"name": "Splunk Splunk Enterprise \u003c9.4.7",
"product_id": "T051012"
}
},
{
"category": "product_version",
"name": "9.4.7",
"product": {
"name": "Splunk Splunk Enterprise 9.4.7",
"product_id": "T051012-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:splunk:splunk:9.4.7"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.3.9",
"product": {
"name": "Splunk Splunk Enterprise \u003c9.3.9",
"product_id": "T051013"
}
},
{
"category": "product_version",
"name": "9.3.9",
"product": {
"name": "Splunk Splunk Enterprise 9.3.9",
"product_id": "T051013-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:splunk:splunk:9.3.9"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.2.11",
"product": {
"name": "Splunk Splunk Enterprise \u003c9.2.11",
"product_id": "T051014"
}
},
{
"category": "product_version",
"name": "9.2.11",
"product": {
"name": "Splunk Splunk Enterprise 9.2.11",
"product_id": "T051014-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:splunk:splunk:9.2.11"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.4.8",
"product": {
"name": "Splunk Splunk Enterprise \u003c9.4.8",
"product_id": "T051015"
}
},
{
"category": "product_version",
"name": "9.4.8",
"product": {
"name": "Splunk Splunk Enterprise 9.4.8",
"product_id": "T051015-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:splunk:splunk:9.4.8"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.2.12",
"product": {
"name": "Splunk Splunk Enterprise \u003c9.2.12",
"product_id": "T051016"
}
},
{
"category": "product_version",
"name": "9.2.12",
"product": {
"name": "Splunk Splunk Enterprise 9.2.12",
"product_id": "T051016-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:splunk:splunk:9.2.12"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.3.8",
"product": {
"name": "Splunk Splunk Enterprise \u003c9.3.8",
"product_id": "T051018"
}
},
{
"category": "product_version",
"name": "9.3.8",
"product": {
"name": "Splunk Splunk Enterprise 9.3.8",
"product_id": "T051018-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:splunk:splunk:9.3.8"
}
}
}
],
"category": "product_name",
"name": "Splunk Enterprise"
}
],
"category": "vendor",
"name": "Splunk"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-20137",
"product_status": {
"known_affected": [
"T051010",
"T051009",
"T051008",
"T051007",
"T051006",
"T051011",
"T051013"
]
},
"release_date": "2026-02-18T23:00:00.000+00:00",
"title": "CVE-2026-20137"
},
{
"cve": "CVE-2026-20138",
"product_status": {
"known_affected": [
"T051010",
"T051009",
"T051008",
"T051006",
"T051012",
"T051011",
"T051014",
"T051013"
]
},
"release_date": "2026-02-18T23:00:00.000+00:00",
"title": "CVE-2026-20138"
},
{
"cve": "CVE-2026-20139",
"product_status": {
"known_affected": [
"T051010",
"T051009",
"T051008",
"T051016",
"T051015",
"T051018",
"T051006",
"T051012",
"T051011",
"T051014",
"T051013"
]
},
"release_date": "2026-02-18T23:00:00.000+00:00",
"title": "CVE-2026-20139"
},
{
"cve": "CVE-2026-20140",
"product_status": {
"known_affected": [
"T051010",
"T051009",
"T051008",
"T051016",
"T051015",
"T051018",
"T051007",
"T051006",
"T051012",
"T051011",
"T051014",
"T051013"
]
},
"release_date": "2026-02-18T23:00:00.000+00:00",
"title": "CVE-2026-20140"
},
{
"cve": "CVE-2026-20141",
"product_status": {
"known_affected": [
"T051009",
"T051008",
"T051015",
"T051018",
"T051007",
"T051012",
"T051011",
"T051013"
]
},
"release_date": "2026-02-18T23:00:00.000+00:00",
"title": "CVE-2026-20141"
},
{
"cve": "CVE-2026-20142",
"product_status": {
"known_affected": [
"T051010",
"T051009",
"T051008",
"T051018",
"T051006",
"T051012",
"T051011",
"T051014",
"T051013"
]
},
"release_date": "2026-02-18T23:00:00.000+00:00",
"title": "CVE-2026-20142"
},
{
"cve": "CVE-2026-20143",
"product_status": {
"known_affected": [
"T051009",
"T051008",
"T051015",
"T051018",
"T051007",
"T051006",
"T051012",
"T051011",
"T051013"
]
},
"release_date": "2026-02-18T23:00:00.000+00:00",
"title": "CVE-2026-20143"
},
{
"cve": "CVE-2026-20144",
"product_status": {
"known_affected": [
"T051010",
"T051009",
"T051008",
"T051018",
"T051006",
"T051012",
"T051011",
"T051014"
]
},
"release_date": "2026-02-18T23:00:00.000+00:00",
"title": "CVE-2026-20144"
}
]
}