Splunk Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by splunk
Vendor:
Vendor
- splunk
Criticality:
⚠️
Matching any of the following.
⚠️ CVSS Impact
- Critical
⚠️ CVSS Impact
- High
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Remote Code Execution Vulnerability in Splunk Enterprise and Splunk Cloud Platform
CVE-2025-20229SplunkSplunk Enterprise8HIGHUnauthorized Information Disclosure in Splunk Enterprise by Low-Privileged Users
CVE-2025-20231SplunkSplunk Enterprise7.1HIGHLow-Privileged User RCE Vulnerability in Splunk Enterprise and Secure Gateway
CVE-2024-53247SplunkSplunk Enterprise8.8HIGHSensitive Information Disclosure in Splunk Enterprise and Cloud Platform
CVE-2024-53246SplunkSplunk Enterprise7.5HIGHPotential Remote Command Execution (RCE) through arbitrary file write to Windows system root directory when Splunk Enterprise for Windows is installed on a separate disk
CVE-2024-45731SplunkSplunk Enterprise8HIGHLow-Privileged User Vulnerability in Splunk Enterprise
CVE-2024-45732SplunkSplunk Enterprise7.1HIGHRemote Code Execution (RCE) due to insecure session storage configuration in Splunk Enterprise on Windows
CVE-2024-45733SplunkSplunk Enterprise8.8HIGHSplunk Enterprise Vulnerability: Arbitrary JavaScript Code Execution in Browser Context
CVE-2024-36997SplunkSplunk Enterprise8.1HIGHSplunk Enterprise Crash Vulnerability
CVE-2024-36982SplunkSplunk Enterprise7.5HIGHSplunk Enterprise Path Traversal Vulnerability on Windows
CVE-2024-36991SplunkSplunk Enterprise🥇📈💰👾🟡EPSS 87%📰7.5HIGHLow-Privileged User Vulnerability in Splunk Enterprise Could Lead to Remote Code Execution
CVE-2024-36985SplunkSplunk Enterprise8.8HIGHSplunk Enterprise Vulnerability Allows Arbitrary Code Execution
CVE-2024-36984SplunkSplunk Enterprise8.8HIGHAuthenticated User Vulnerability in Splunk Enterprise and Splunk Cloud Platform Could Allow Arbitrary Code Execution
CVE-2024-36983SplunkSplunk Enterprise8.8HIGHSplunk Authentication Token Exposure in Debug Log in Splunk Enterprise
CVE-2024-29945SplunkSplunk Enterprise📰7.2HIGHSplunk Enterprise Vulnerability: Risky SPL Commands in Dashboard Examples Hub
CVE-2024-29946SplunkSplunk Enterprise📰8.1HIGHSensitive Information Disclosure to Internal Log Files in Splunk Add-on Builder
CVE-2023-46230SplunkSplunk Add-on Builder8.2HIGHSession Token Disclosure to Internal Log Files in Splunk Add-on Builder
CVE-2023-46231SplunkSplunk Add-on Builder8.8HIGHUnsafe Deserialization of Untrusted Data in Splunk Enterprise for Windows
CVE-2024-23678SplunkSplunk Enterprise📰7.5HIGHSplunk Enterprise Vulnerability: Remote Code Execution via Malicious XSLT
CVE-2023-46214SplunkSplunk Enterprise👾EPSS 86%📰8HIGHSplunk Enterprise on Windows Privilege Escalation due to Insecure OPENSSLDIR Build Definition Reference in DLL
CVE-2023-40596SplunkSplunk Enterprise7HIGHCommand Injection in Splunk Enterprise Using External Lookups
CVE-2023-40598SplunkSplunk Enterprise8.5HIGHReflected Cross-site Scripting (XSS) on "/app/search/table" web endpoint
CVE-2023-40592SplunkSplunk Enterprise8.4HIGHAbsolute Path Traversal in Splunk Enterprise Using runshellscript.py
CVE-2023-40597SplunkSplunk Enterprise7.8HIGHRemote Code Execution via Serialized Session Payload
CVE-2023-40595SplunkSplunk Enterprise8.8HIGHUnauthenticated Log Injection in Splunk IT Service Intelligence (ITSI)
CVE-2023-4571SplunkSplunk Itsi8.6HIGH