Post Date: 2026/07/16

【Vulnerability Alert】High-Risk Security Vulnerabilities in Splunk Enterprise, Splunk Cloud Platform, and Splunk Secure Gateway (CVE-2026-20251) Exist, Please Confirm and Patch as Soon as Possible

  • Subject: 【Vulnerability Alert】High-Risk Security Vulnerabilities in Splunk Enterprise, Splunk Cloud Platform, and Splunk Secure Gateway (CVE-2026-20251) Exist, Please Confirm and Patch as Soon as Possible


  • Description:
    • Forwarded National Information Security Analysis and Sharing Center Security Advisory NISAC-200-202607-00000001
    • Researchers have discovered an Insecure Deserialization vulnerability (CVE-2026-20251) in Splunk Enterprise, Splunk Cloud Platform, and Splunk Secure Gateway. An authenticated remote attacker can exploit this by deserializing untrusted data, which subsequently allows them to execute arbitrary code on the affected server. Please confirm and perform patching as soon as possible.
  • Affected Platforms:
    • Splunk Enterprise versions 10.2.0 to 10.2.3
    • Splunk Enterprise versions 10.0.0 to 10.0.6
    • Splunk Enterprise versions 9.4.0 to 9.4.11
    • Splunk Enterprise versions 9.3.0 to 9.3.12
    • Splunk Cloud Platform versions prior to 10.3.2512.12 (exclusive)
    • Splunk Cloud Platform versions prior to 10.2.2510.14 (exclusive)
    • Splunk Cloud Platform versions prior to 10.1.2507.22 (exclusive)
    • Splunk Cloud Platform versions prior to 9.3.2411.132 (exclusive)
    • Splunk Secure Gateway versions prior to 3.10.6 (exclusive)
    • Splunk Secure Gateway versions prior to 3.9.20 (exclusive)
    • Splunk Secure Gateway versions prior to 3.8.67 (exclusive)
  • Recommended Actions:
  • References:

Computer and Communication Center
Network Systems Division Sincerely