Stored Cross-Site Scripting in Splunk Enterprise and Cloud Platform
CVE-2026-20162

6.3MEDIUM

Key Information:

Vendor: Splunk
Status: Splunk Enterprise; Splunk Cloud Platform
Vendor: CVE Published:; 11 March 2026

What is CVE-2026-20162?

In specific outdated versions of Splunk Enterprise and Splunk Cloud Platform, low-privileged users can exploit a path traversal flaw while creating a View. This allows for the crafting of malicious payloads that can lead to Stored Cross-Site Scripting, enabling execution of unauthorized JavaScript within the user's browser. While the attacker needs to manipulate the victim into making a request, the implications of malicious code execution pose significant risks to privacy and data integrity.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Splunk Cloud Platform 10.2.2510 < 10.2.2510.4

Splunk Cloud Platform 10.1.2507 < 10.1.2507.15

Splunk Cloud Platform 10.0.2503 < 10.0.2503.11

References

https://advisory.splunk.com/advisories/SVD-2026-0301

CVSS V3.1

Score:

6.3

Severity:

MEDIUM

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 11, 2026
Vulnerability Reserved
Oct 8, 2025

Credit

Danylo Dmytriiev (DDV_UA)

JSON

Splunk