GHSA-m4gj-655q-gvm8

GHSA-m4gj-655q-gvm8 PUBLISHED CVSS 6.300000190734863 MEDIUM

In Splunk Enterprise versions below 10.2.1, 10.0.4, 9.4.9, and 9.3.10, and Splunk Cloud Platform versions below 10.2.2510.7, 10.1.2507.17, 10.0.2503.12, and 9.3.2411.124, a low-privileged user that does not hold the "admin" or "power" Splunk roles could retrieve sensitive information by inspecting the job's search log due to improper access control in the MongoClient logging channel.

Risk Scores

CVSS v3.1

6.300000190734863

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Timeline

Mar 11, 2026 CVE Published
Apr 10, 2026 Security Advisory

References

https://nvd.nist.gov/vuln/detail/CVE-2026-20165 advisory
https://advisory.splunk.com/advisories/SVD-2026-0304 url

Open in Interactive Console →