Home

Description

In Splunk MCP Server app versions below 1.0.3 , a user who holds a role with access to the Splunk `_internal` index or possesses the high-privilege capability `mcp_tool_admin` could view users session and authorization tokens in clear text.<br><br>The vulnerability would require either local access to the log files or administrative access to internal indexes, which by default only the admin role receives. <br><br>Review roles and capabilities on your instance and restrict internal index access to administrator-level roles. See [Define roles on the Splunk platform with capabilities](https://docs.splunk.com/Documentation/Splunk/latest/Security/Rolesandcapabilities) and [Connecting to MCP Server and Admin settings](https://help.splunk.com/en/splunk-enterprise/mcp-server-for-splunk-platform/connecting-to-mcp-server-and-admin-settings) in the Splunk documentation for more information.

PUBLISHED Reserved 2025-10-08 | Published 2026-04-15 | Updated 2026-04-15 | Assigner cisco




HIGH: 7.2CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Problem types

Information written to log files can be of a sensitive nature and give valuable guidance to an attacker or expose sensitive user information.

Product status

1.0 (custom) before 1.0.3
affected

Credits

Charlie Huggard, Splunk

References

advisory.splunk.com/advisories/SVD-2026-0407

cve.org (CVE-2026-20205)

nvd.nist.gov (CVE-2026-20205)

Download JSON