splunk

284 tracked vulnerabilities.

CVE-2025-20323 MEDIUM
Splunk Enterprise <9.4.3, 9.3.5, 9.2.7, 9.1.10 - Info Disclosure
Jul 07, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-20322 MEDIUM
Splunk <9.4.3, 9.3.5, 9.2.7, 9.1.10 - CSRF/DoS
Jul 07, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-20321 MEDIUM
Splunk <9.4.3, 9.3.5, 9.2.7, 9.1.10 - CSRF
Jul 07, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-20320 MEDIUM
Splunk <9.4.3, 9.3.5, 9.2.7, 9.1.10 - DoS
Jul 07, 2025
CVSS 6.3
EPSS 0.00
CVE-2025-20319 MEDIUM
Splunk Enterprise <9.4.3, 9.3.5, 9.2.7, 9.1.10 - RCE
Jul 07, 2025
CVSS 6.8
EPSS 0.00
CVE-2025-20300 MEDIUM
Splunk Enterprise <9.4.2, 9.3.5, 9.2.6, 9.1.9 - Info Disclosure
Jul 07, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-20298 HIGH
SplunkUniversalForwarder <9.4.2-9.1.9 - Privilege Escalation
Jun 02, 2025
CVSS 8.0
EPSS 0.00
CVE-2025-20297 MEDIUM
Splunk Enterprise < 9.4.2, < 9.3.4, < 9.2.6 and Splunk Cloud Platform < 9.3.2411.102 - XSS via pdfgen/render
Jun 02, 2025
CVSS 4.3
EPSS 0.15
CVE-2025-20230 MEDIUM
Splunk Enterprise <9.4.1, 9.3.3, 9.2.5, 9.1.8 - Info Disclosure
Mar 26, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-20233 LOW
Splunk App for Lookup File Editing <4.0.5 - Info Disclosure
Mar 26, 2025
CVSS 2.5
EPSS 0.00
CVE-2025-20232 MEDIUM
Splunk Enterprise <9.3.3, 9.2.5, 9.1.8 - Privilege Escalation
Mar 26, 2025
CVSS 5.7
EPSS 0.00
CVE-2025-20231 HIGH
Splunk Enterprise <9.4.1, 9.3.3, 9.2.5, 9.1.8 - Info Disclosure
Mar 26, 2025
CVSS 7.1
EPSS 0.00
CVE-2025-20229 HIGH
Splunk <9.3.3, 9.2.5, 9.1.8 - Cloud & Enterprise - RCE
Mar 26, 2025
CVSS 8.0
EPSS 0.14
CVE-2025-20228 MEDIUM
Splunk <9.3.3, <9.2.5, <9.1.8 - CSRF
Mar 26, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-20227 MEDIUM
Splunk <9.4.1, <9.3.3, <9.2.5, <9.1.8 - Info Disclosure
Mar 26, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-20226 MEDIUM
Splunk <9.4.1, 9.3.3, 9.2.5, 9.1.8 - Privilege Escalation
Mar 26, 2025
CVSS 5.7
EPSS 0.00
CVE-2025-0367 MEDIUM
Splunk SA-ldapsearch <3.1.0 - ReDoS
Jan 30, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-22621 MEDIUM
Splunk App SOAR <1.0.67 - Privilege Escalation
Jan 07, 2025
CVSS 6.4
EPSS 0.00
CVE-2024-53247 HIGH
Splunk Enterprise <9.3.2, 9.2.4, 9.1.7 - RCE
Dec 10, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-53246 MEDIUM
Splunk Enterprise <9.3.2, <9.2.4, <9.1.7 & Splunk Cloud <9.3.2408.101 - Sensitive Info Disclosure via SPL
Dec 10, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-53245 LOW
Splunk Enterprise <9.1.7, 9.2.4, 9.3.0 & Splunk Cloud <9.1.2312.206 - Unauthorized Dashboard Info Exposure
Dec 10, 2024
CVSS 3.1
EPSS 0.00
CVE-2024-53244 MEDIUM
Splunk < 9.1.7 - Information Disclosure
Dec 10, 2024
CVSS 5.7
EPSS 0.00
CVE-2024-53243 MEDIUM
Splunk Enterprise <9.3.2, 9.2.4, 9.1.7 - Info Disclosure
Dec 10, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-45741 MEDIUM
Splunk 9.1.0-9.1.5 and 9.1.2312-9.1.2312.204 - Stored Cross-Site Scripting via Custom Configuration File
Oct 14, 2024
CVSS 5.4
EPSS 0.13
CVE-2024-45740 MEDIUM
Splunk Enterprise < 9.2.3, 9.1.0-9.1.6 & Splunk Cloud Platform < 9.2.2403 - Stored XSS via Scheduled Views
Oct 14, 2024
CVSS 5.4
EPSS 0.00