Vulnerability Details CVE-2026-20259
In Splunk Enterprise versions below 10.2.4 and 10.0.7, and Splunk Cloud Platform versions below 10.4.2604.0, 10.3.2512.12, 10.2.2510.15, 10.1.2507.23, 10.0.2503.14, and 9.3.2411.131, a user who holds a Splunk role that contains the high-privilege capability `edit_saved_search_owner` could reassign saved search ownership to users outside their authorized scope. The ownership reassignment endpoint lacks access control.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 8.7%
CVSS Severity
CVSS v3 Score 5.5
Products affected by CVE-2026-20259
-
cpe:2.3:a:splunk:splunk:10.0.0
-
cpe:2.3:a:splunk:splunk:10.0.1
-
cpe:2.3:a:splunk:splunk:10.0.2
-
cpe:2.3:a:splunk:splunk:10.0.3
-
cpe:2.3:a:splunk:splunk:10.0.4
-
cpe:2.3:a:splunk:splunk:10.0.5
-
cpe:2.3:a:splunk:splunk:10.2.0
-
cpe:2.3:a:splunk:splunk:10.2.1
-
cpe:2.3:a:splunk:splunk:10.2.2
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.0.2503
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.0.2503.10
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.0.2503.11
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.0.2503.12
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.0.2503.13
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.0.2503.5
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.0.2503.6
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.0.2503.7
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.0.2503.8
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.0.2503.9
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.1
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.10
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.11
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.12
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.15
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.16
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.17
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.19
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.20
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.21
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.22
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.4
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.6
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.1.2507.8
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.10
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.11
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.12
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.13
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.14
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.3
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.4
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.5
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.7
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.8
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.2.2510.9
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.3.2512
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.3.2512.10
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.3.2512.11
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.3.2512.5
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.3.2512.6
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.3.2512.8
-
cpe:2.3:a:splunk:splunk_cloud_platform:10.3.2512.9
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.102
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.103
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.104
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.107
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.108
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.109
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.111
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.112
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.116
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.117
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.120
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.121
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.123
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.124
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.127
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.128
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.129
-
cpe:2.3:a:splunk:splunk_cloud_platform:9.3.2411.130