Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication
1. Executive summary Splunk has disclosed CVE-2026-20253, a critical (CVSS 9.8) flaw in the Splunk Enterprise PostgreSQL sidecar service that allows an unauthenticated,
13 Jun 2026 · 6 min read
read →