Friday, 10 July 2026

Splunk developers fix multiple security flaws in its products

Splunk developers has released security updates to address multiple vulnerabilities. A remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege, remote code execution, sensitive information disclosure, cross-site scripting and security restriction bypass on the targeted system. The vulnerabilities were fixed in Splunk Enterprise 10.2.4, 10.0.7, 9.4.12, 9.3.13, 10.4.0, 10.2.4, 10.0.7, 9.4.12, 9.3.13, Splunk Cloud Platform 10.4.2604.3, 10.3.2512.12, 10.3.2512.13, 10.2.2510.14, 10.2.2510.15, 10.1.2507.22, 10.1.2507.23, 10.0.2503.14, 9.3.2411.131, 9.3.2411.132, Splunk Secure Gateway 3.10.6, 3.9.20, 3.8.67 and Splunk SOAR 8.5.0. Additionally, the company rolled out fixes for bugs in third-party packages in Splunk Enterprise and Splunk SOAR.

More information on vulnerabilities and updates is available in the Splunk security advisories - splunk.com

17 June 2026

-
21