Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication

Splunk has released security updates to address a critical security flaw in Splunk Enterprise that could be exploited to conduct unauthenticated file operations and even remote code execution. The vulnerability, tracked as CVE-2026-20253, is rated 9.8 on the CVSS scoring system. "In Splunk Enterprise versions below 10.2.4 and 10.0.7, an unauthenticated user could create or truncate arbitrary

Tekst info:

Gepubliceerd: 18:53 - 13 Jun 2026

thehackernews.com

Full text URL: https://thehackernews.com/2026/06/critical-splunk-enterprise-flaw-lets.html
Textarea URL (deze pagina):
https://textarea.nl/nl/i/eNoFwUkOwCAIAMAXIcaDh_7GEBqMuARo_H5nJOL4gxjC0miwLb6eaE8suVTMFcl6dGoKfvRbA3gF27HuDK-2C8rhSWLqDwQKG4Q=_2026-06-13
Bron: https://feeds.feedburner.com/TheHackersNews
theHackerNews: https://thehackernews.com
Publicatie datum: 18:53 - 13 Jun 2026
Data laatste keer ververst op:
22:45 - 13 Jun 2026