The Hacker News

Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication

Splunk issued security updates for a critical CVSS 9.8 vulnerability in Splunk Enterprise that allows unauthenticated remote ...

Splunk Enterprise: Attacks on Code Smuggling Vulnerability

Splunk warns that malicious actors are attacking a critical code smuggling vulnerability in Splunk Enterprise. Updates are ...
latesthackingnews.com

How CVE-2026-20253 Turns Splunk’s PostgreSQL Sidecar Into an Open Door

CVE-2026-20253 is a CVSS 9.8 pre-auth flaw in Splunk Enterprise's PostgreSQL sidecar service. An unauthenticated attacker can ...
SecurityWeek

Splunk, Palo Alto Networks Patch Severe Vulnerabilities

Splunk and Palo Alto Networks have released patches for critical and high-severity vulnerabilities across their products.
SiliconANGLE

Cisco endows Splunk with agentic AI for security and observability

Cisco Systems Inc. today announced new editions of its Splunk data platform that use agentic artificial intelligence to improve both security operations and observability across digital infrastructure ...