HIGHCVE-2026-20239Published Modified CNA cisco
CVE-2026-20239: Sensitive Information Disclosure through Log Files in Splunk Enterprise
In Splunk Enterprise versions below 10.2.2 and 10.0.5, and Splunk Cloud Platform versions below 10.3.2512.8, 10.2.2510.11, 10.1.2507.21, and 10.0.2503.13, a user with a role that has access to the `_internal` index could view session cookies and response bodies that contain sensitive data.
Metrics
- CVSS v3.1
- 7.5
- Severity
- HIGH
- Fixed in
- 10.0.5
- Affected Products
- 2
Fix available
10.0.510.0.2503.1310.1.2507.2110.2.210.2.2510.1110.3.2512.8
Affected packages
- Splunk / Splunk Enterprise< 10.2.2 (from 10.2) · < 10.0.5 (from 10.0)
- Splunk / Splunk Cloud Platform< 10.3.2512.8 (from 10.3.2512) · < 10.2.2510.11 (from 10.2.2510) · < 10.1.2507.21 (from 10.1.2507) · < 10.0.2503.13 (from 10.0.2503)
CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:HReferences