Splunk Products Multiple Vulnerabilities

Release Date: 3 Jun 2025

RISK: Medium Risk

TYPE: Security software and application - Security Software & Appliance

Multiple vulnerabilities were identified in Splunk products. A remote attacker could exploit some of these vulnerabilities to trigger cross-site scripting and elevation of privilege on the targeted system.

---

Impact

• Cross-Site Scripting
• Elevation of Privilege

---

System / Technologies affected

• Splunk Enterprise versions below 9.4.2, 9.3.4 and 9.2.6
• Splunk Cloud Platform versions below 9.3.2411.102, 9.3.2408.111 and 9.2.2406.118
• Splunk Universal Forwarder for Windows versions below 9.4.2, 9.3.4, 9.2.6, and 9.1.9

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

• https://advisory.splunk.com//advisories/SVD-2025-0601
• https://advisory.splunk.com//advisories/SVD-2025-0602

---

Vulnerability Identifier

• CVE-2025-20297
• CVE-2025-20298

---

Source

• Splunk

---

Related Link

• https://advisory.splunk.com//advisories/SVD-2025-0601
• https://advisory.splunk.com//advisories/SVD-2025-0602