Detections
Analytics

Splunk Universal Forwarder 9.4.0 < 9.4.11 (SVD-2026-0506)

high Nessus Plugin ID 315752

Synopsis

An application running on a remote web server host is affected by a vulnerability

Description

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2026-0506 advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Upgrade Splunk Universal Forwarder to versions 10.2.3, 10.0.6, 9.4.11, 9.3.12, or higher.

See Also

https://advisory.splunk.com/advisories/SVD-2026-0506.html

Plugin Details

Severity: High

ID: 315752

File Name: splunk_9411_svd-2026-0506.nasl

Version: 1.1

Type: Combined

Agent: windows, macosx, unix

Family: CGI abuses

Published: 5/20/2026

Updated: 5/20/2026

Supported Sensors: Nessus Agent, Nessus

Vulnerability Information

CPE: cpe:/a:splunk:splunk, cpe:/a:splunk:universal_forwarder

Exploit Ease: No known exploits are available

Patch Publication Date: 5/20/2026

Vulnerability Publication Date: 5/20/2026