Splunk warns that malicious actors are attacking a critical code smuggling vulnerability in Splunk Enterprise. Updates are ...

CVE-2026-20253 is a CVSS 9.8 pre-auth flaw in Splunk Enterprise's PostgreSQL sidecar service. An unauthenticated attacker can ...

A Splunk complaint [PDF] names Clint Sharp, a former senior leader in Splunk’s product management team, as the villain of the piece after he founded a rival company called “Cribl”. “Cribl was founded ...

データ基盤「Splunk」上でAIや機械学習を利用するための拡張ツール「Splunk AI Toolkit」に複数の脆弱性が明らかとなった。アップデートが呼びかけられている。 Splunkは現地時間2026年6月17日にセキュリティアドバイザリを公開し、同ツールに関する2件の脆弱性「CVE-2026-20266」「CVE-2026-20265」を明らかにしたもの。 「CVE-2026-20266」 ...

Splunk has released patches for multiple vulnerabilities in Splunk Enterprise, including two high-severity remote code execution flaws. Splunk on Monday announced fixes for 11 vulnerabilities in ...

Splunk has taken its competitor Cribl to court over the illegal use of its source code and other technical secrets. With this, Cribl would like to undermine the data platform specialist’s market ...

Splunk has disclosed a high-severity security flaw that can allow remote code execution in affected Splunk Enterprise and Splunk Cloud Platform deployments, raising concern for organisations that rely ...

Splunk Enterprise Update Patches Code Execution Vulnerability: The flaw allows low-privileged users to upload files to a temporary directory to achieve remote code execution. The post Splunk ...

CISA has given federal agencies only three days to patch CVE-2026-20253, which can be exploited for unauthenticated remote code execution. A critical Splunk Enterprise vulnerability is being exploited ...