{"@context":"https://openvex.dev/ns/v0.2.0","@id":"https://database.harborguard.co/cve/CVE-2026-20258/vex.json","author":"HarborGuard Database","role":"Document Creator","timestamp":"2026-06-10T18:22:27.505Z","version":1,"tooling":"HarborGuard Database (https://database.harborguard.co)","statements":[{"vulnerability":{"name":"CVE-2026-20258","@id":"https://www.cve.org/CVERecord?id=CVE-2026-20258","description":"In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, and Splunk Cloud Platform versions below 10.3.2512.11, 10.2.2510.15, 10.1.2507.23, and 9.3.2411.132, a low-privileged user that does not hold the \"admin\" or \"power\" Splunk roles could store a malicious script in a classic dashboard HTML panel, causing unauthorized JavaScript code to execute in the browser of another user.  \n\nThe vulnerability requires the attacker to phish the victim by tricking them into initiating a reques"},"products":[{"@id":"cpe:2.3:a:splunk:splunk_enterprise:*:*:*:*:*:*:*:*","identifiers":{"cpe23":"cpe:2.3:a:splunk:splunk_enterprise:*:*:*:*:*:*:*:*"}},{"@id":"cpe:2.3:a:splunk:splunk_cloud_platform:*:*:*:*:*:*:*:*","identifiers":{"cpe23":"cpe:2.3:a:splunk:splunk_cloud_platform:*:*:*:*:*:*:*:*"}}],"status":"affected","action_statement":"Update to a fixed version: 9.3.13, 9.3.2411.132, 9.4.12, 10.0.7, 10.1.2507.23, 10.2.4, 10.2.2510.15, 10.3.2512.11.","timestamp":"2026-06-10T18:22:27.505Z"}]}