CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-20251

In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, Splunk Cloud Platform versions below 10.3.2512.12, 10.2.2510.14, 10.1.2507.22, and 9.3.2411.132, and Splunk Secure Gateway versions below 3.10.6, 3.9.20, and 3.8.67, a low-privileged user that does not hold the 'admin' or 'power' Splunk roles could perform a Remote Code Execution (RCE) through the Splunk Secure Gateway app.<br><br>The Remote Code Execution is possible because of unsafe deserialization of App Key Value Store (KV Store) data through the ‘jsonpickle’ Python library, which reconstructs arbitrary Python objects from specially crafted JavaScript Object Notation (JSON) without adequate validation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 42.1%

CVSS Severity

CVSS v3 Score 8.8

References

https://advisory.splunk.com/advisories/SVD-2026-0601

Products affected by CVE-2026-20251

Splunk » Splunk » Version: 10.0.0

cpe:2.3:a:splunk:splunk:10.0.0
Splunk » Splunk » Version: 10.0.1

cpe:2.3:a:splunk:splunk:10.0.1
Splunk » Splunk » Version: 10.0.2

cpe:2.3:a:splunk:splunk:10.0.2
Splunk » Splunk » Version: 10.0.3

cpe:2.3:a:splunk:splunk:10.0.3
Splunk » Splunk » Version: 10.0.4

cpe:2.3:a:splunk:splunk:10.0.4
Splunk » Splunk » Version: 10.0.5

cpe:2.3:a:splunk:splunk:10.0.5
Splunk » Splunk » Version: 10.2.0

cpe:2.3:a:splunk:splunk:10.2.0
Splunk » Splunk » Version: 10.2.1

cpe:2.3:a:splunk:splunk:10.2.1
Splunk » Splunk » Version: 10.2.2

cpe:2.3:a:splunk:splunk:10.2.2
Splunk » Splunk » Version: 9.3.0

cpe:2.3:a:splunk:splunk:9.3.0
Splunk » Splunk » Version: 9.3.1

cpe:2.3:a:splunk:splunk:9.3.1
Splunk » Splunk » Version: 9.3.10

cpe:2.3:a:splunk:splunk:9.3.10
Splunk » Splunk » Version: 9.3.11

cpe:2.3:a:splunk:splunk:9.3.11
Splunk » Splunk » Version: 9.3.12

cpe:2.3:a:splunk:splunk:9.3.12
Splunk » Splunk » Version: 9.3.2

cpe:2.3:a:splunk:splunk:9.3.2
Splunk » Splunk » Version: 9.3.3

cpe:2.3:a:splunk:splunk:9.3.3
Splunk » Splunk » Version: 9.3.4

cpe:2.3:a:splunk:splunk:9.3.4
Splunk » Splunk » Version: 9.3.5

cpe:2.3:a:splunk:splunk:9.3.5
Splunk » Splunk » Version: 9.3.6

cpe:2.3:a:splunk:splunk:9.3.6
Splunk » Splunk » Version: 9.3.7

cpe:2.3:a:splunk:splunk:9.3.7
Splunk » Splunk » Version: 9.3.8

cpe:2.3:a:splunk:splunk:9.3.8
Splunk » Splunk » Version: 9.3.9

cpe:2.3:a:splunk:splunk:9.3.9
Splunk » Splunk » Version: 9.4.0

cpe:2.3:a:splunk:splunk:9.4.0
Splunk » Splunk » Version: 9.4.1

cpe:2.3:a:splunk:splunk:9.4.1
Splunk » Splunk » Version: 9.4.10

cpe:2.3:a:splunk:splunk:9.4.10
Splunk » Splunk » Version: 9.4.11

cpe:2.3:a:splunk:splunk:9.4.11
Splunk » Splunk » Version: 9.4.2

cpe:2.3:a:splunk:splunk:9.4.2
Splunk » Splunk » Version: 9.4.3

cpe:2.3:a:splunk:splunk:9.4.3
Splunk » Splunk » Version: 9.4.4

cpe:2.3:a:splunk:splunk:9.4.4
Splunk » Splunk » Version: 9.4.5

cpe:2.3:a:splunk:splunk:9.4.5
Splunk » Splunk » Version: 9.4.6

cpe:2.3:a:splunk:splunk:9.4.6
Splunk » Splunk » Version: 9.4.7

cpe:2.3:a:splunk:splunk:9.4.7
Splunk » Splunk » Version: 9.4.8

cpe:2.3:a:splunk:splunk:9.4.8
Splunk » Splunk » Version: 9.4.9

cpe:2.3:a:splunk:splunk:9.4.9
Splunk » Splunk Cloud Platform » Version: 10.1.2507

cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507
Splunk » Splunk Cloud Platform » Version: 10.1.2507.1

cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.1
Splunk » Splunk Cloud Platform » Version: 10.1.2507.10

cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.10
Splunk » Splunk Cloud Platform » Version: 10.1.2507.11

cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.11
Splunk » Splunk Cloud Platform » Version: 10.1.2507.12

cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.12
Splunk » Splunk Cloud Platform » Version: 10.1.2507.15

cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.15
Splunk » Splunk Cloud Platform » Version: 10.1.2507.16

cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.16
Splunk » Splunk Cloud Platform » Version: 10.1.2507.17

cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.17
Splunk » Splunk Cloud Platform » Version: 10.1.2507.19

cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.19
Splunk » Splunk Cloud Platform » Version: 10.1.2507.20

cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.20
Splunk » Splunk Cloud Platform » Version: 10.1.2507.4

cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.4
Splunk » Splunk Cloud Platform » Version: 10.1.2507.6

cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.6
Splunk » Splunk Cloud Platform » Version: 10.1.2507.8

cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.8
Splunk » Splunk Cloud Platform » Version: 10.2.2510

cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510
Splunk » Splunk Cloud Platform » Version: 10.2.2510.10

cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.10
Splunk » Splunk Cloud Platform » Version: 10.2.2510.12

cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.12
Splunk » Splunk Cloud Platform » Version: 10.2.2510.13

cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.13
Splunk » Splunk Cloud Platform » Version: 10.2.2510.3

cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.3
Splunk » Splunk Cloud Platform » Version: 10.2.2510.4

cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.4
Splunk » Splunk Cloud Platform » Version: 10.2.2510.5

cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.5
Splunk » Splunk Cloud Platform » Version: 10.2.2510.7

cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.7
Splunk » Splunk Cloud Platform » Version: 10.2.2510.8

cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.8
Splunk » Splunk Cloud Platform » Version: 10.2.2510.9

cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.9
Splunk » Splunk Cloud Platform » Version: 10.3.2512

cpe:2.3:a:splunk:splunk_cloud_platform:10.3.2512
Splunk » Splunk Cloud Platform » Version: 10.3.2512.10

cpe:2.3:a:splunk:splunk_cloud_platform:10.3.2512.10
Splunk » Splunk Cloud Platform » Version: 10.3.2512.11

cpe:2.3:a:splunk:splunk_cloud_platform:10.3.2512.11
Splunk » Splunk Cloud Platform » Version: 10.3.2512.5

cpe:2.3:a:splunk:splunk_cloud_platform:10.3.2512.5
Splunk » Splunk Cloud Platform » Version: 10.3.2512.6

cpe:2.3:a:splunk:splunk_cloud_platform:10.3.2512.6
Splunk » Splunk Cloud Platform » Version: 9.3.2411

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411
Splunk » Splunk Cloud Platform » Version: 9.3.2411.102

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.102
Splunk » Splunk Cloud Platform » Version: 9.3.2411.103

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.103
Splunk » Splunk Cloud Platform » Version: 9.3.2411.104

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.104
Splunk » Splunk Cloud Platform » Version: 9.3.2411.107

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.107
Splunk » Splunk Cloud Platform » Version: 9.3.2411.108

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.108
Splunk » Splunk Cloud Platform » Version: 9.3.2411.109

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.109
Splunk » Splunk Cloud Platform » Version: 9.3.2411.111

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.111
Splunk » Splunk Cloud Platform » Version: 9.3.2411.112

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.112
Splunk » Splunk Cloud Platform » Version: 9.3.2411.116

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.116
Splunk » Splunk Cloud Platform » Version: 9.3.2411.117

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.117
Splunk » Splunk Cloud Platform » Version: 9.3.2411.120

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.120
Splunk » Splunk Cloud Platform » Version: 9.3.2411.121

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.121
Splunk » Splunk Cloud Platform » Version: 9.3.2411.123

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.123
Splunk » Splunk Cloud Platform » Version: 9.3.2411.124

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.124
Splunk » Splunk Cloud Platform » Version: 9.3.2411.127

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.127
Splunk » Splunk Cloud Platform » Version: 9.3.2411.128

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.128
Splunk » Splunk Cloud Platform » Version: 9.3.2411.130

cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.130
Splunk » Splunk Secure Gateway » Version: Any

cpe:2.3:a:splunk:splunk_secure_gateway:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-20251

Products

Pricing

Contact Us