Splunk Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by splunk
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Improper Permissions in Splunk Universal Forwarder for Windows
CVE-2025-20387SplunkSplunk Enterprise8HIGHImproper Permissions in Splunk Enterprise for Windows Affecting Multiple Versions
CVE-2025-20386SplunkSplunk Enterprise8HIGHServer-Side Request Forgery in Splunk Enterprise and Cloud Platform
CVE-2025-20371SplunkSplunk Enterprise7.5HIGHPath Traversal Vulnerability in Splunk Enterprise and Splunk Cloud Platform
CVE-2025-20320SplunkSplunk Enterprise7.3HIGHImproper Permissions in Splunk Universal Forwarder for Windows
CVE-2025-20298SplunkSplunk/universalforwar...📈8HIGHRemote Code Execution Vulnerability in Splunk Enterprise and Splunk Cloud Platform
CVE-2025-20229SplunkSplunk Enterprise8HIGHSensitive Information Disclosure in Splunk Enterprise and Cloud Platform
CVE-2024-53246SplunkSplunk Enterprise7.5HIGHLow-Privileged User RCE Vulnerability in Splunk Enterprise and Secure Gateway
CVE-2024-53247SplunkSplunk Enterprise8.8HIGHPotential Remote Command Execution (RCE) through arbitrary file write to Windows system root directory when Splunk Enterprise for Windows is installed on a separate disk
CVE-2024-45731SplunkSplunk Enterprise8HIGHLow-Privileged User Vulnerability in Splunk Enterprise
CVE-2024-45732SplunkSplunk Enterprise7.1HIGHRemote Code Execution (RCE) due to insecure session storage configuration in Splunk Enterprise on Windows
CVE-2024-45733SplunkSplunk Enterprise8.8HIGHSplunk Enterprise Vulnerability: Arbitrary JavaScript Code Execution in Browser Context
CVE-2024-36997SplunkSplunk Enterprise8.1HIGHSplunk Enterprise Crash Vulnerability
CVE-2024-36982SplunkSplunk Enterprise7.5HIGHSplunk Enterprise Path Traversal Vulnerability on Windows
CVE-2024-36991SplunkSplunk Enterprise🥇📈💰👾🟡EPSS 93%📰7.5HIGHLow-Privileged User Vulnerability in Splunk Enterprise Could Lead to Remote Code Execution
CVE-2024-36985SplunkSplunk EnterpriseEPSS 24%8.8HIGHSplunk Enterprise Vulnerability Allows Arbitrary Code Execution
CVE-2024-36984SplunkSplunk Enterprise8.8HIGHAuthenticated User Vulnerability in Splunk Enterprise and Splunk Cloud Platform Could Allow Arbitrary Code Execution
CVE-2024-36983SplunkSplunk Enterprise8.8HIGHSplunk Authentication Token Exposure in Debug Log in Splunk Enterprise
CVE-2024-29945SplunkSplunk Enterprise📰7.2HIGHSplunk Enterprise Vulnerability: Risky SPL Commands in Dashboard Examples Hub
CVE-2024-29946SplunkSplunk Enterprise📰8.1HIGHSensitive Information Disclosure to Internal Log Files in Splunk Add-on Builder
CVE-2023-46230SplunkSplunk Add-on Builder8.2HIGHSession Token Disclosure to Internal Log Files in Splunk Add-on Builder
CVE-2023-46231SplunkSplunk Add-on Builder8.8HIGHUnsafe Deserialization of Untrusted Data in Splunk Enterprise for Windows
CVE-2024-23678SplunkSplunk Enterprise📰7.5HIGHSplunk Enterprise Vulnerability: Remote Code Execution via Malicious XSLT
CVE-2023-46214SplunkSplunk Enterprise👾EPSS 87%📰8HIGHReflected Cross-site Scripting (XSS) on "/app/search/table" web endpoint
CVE-2023-40592SplunkSplunk Enterprise8.4HIGHRemote Code Execution via Serialized Session Payload
CVE-2023-40595SplunkSplunk Enterprise8.8HIGH