Friday, 10 July 2026

Splunk releases security updates for multiple products

Splunk has released security updates to address multiple vulnerabilities. A remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege, sensitive information disclosure, security restriction bypass, data manipulation, denial of service condition and cross-site scripting on the targeted system. Issues affect:

  • Splunk Enterprise versions below 9.2.10, 9.4.6, 9.3.8 and 10.0.2;
  • Splunk Cloud Platform versions below 9.3.2411.120, 10.0.2503.8 and 10.1.2507.10;
  • Splunk Secure Gateway versions below 3.7.28, 3.8.58 and 3.9.10;
  • Splunk MCP Server versions below 0.2.4.

More information on vulnerabilities and updates is available in the Splunk security advisories:

05 December 2025

-
22