Splunk Enterprise: Attacks on Code Smuggling Vulnerability

Splunk warns that malicious actors are attacking a critical code smuggling vulnerability in Splunk Enterprise. Updates are ...
The Hacker News

Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication

Splunk issued security updates for a critical CVSS 9.8 vulnerability in Splunk Enterprise that allows unauthenticated remote ...
SecurityWeek

Atlassian, Splunk Patch Critical Vulnerabilities

Atlassian and Splunk have released patches for critical vulnerabilities, including dozens of flaws in third-party ...
latesthackingnews.com

How CVE-2026-20253 Turns Splunk’s PostgreSQL Sidecar Into an Open Door

CVE-2026-20253 is a CVSS 9.8 pre-auth flaw in Splunk Enterprise's PostgreSQL sidecar service. An unauthenticated attacker can ...
HealthcareInfoSecurity

Critical Splunk Vulnerability Actively Exploited

A disclosed Splunk Enterprise vulnerability, CVE-2026-20253, is under active exploitation and can be chained into ...
SecurityWeek

Splunk, Palo Alto Networks Patch Severe Vulnerabilities

Splunk and Palo Alto Networks have released patches for critical and high-severity vulnerabilities across their products.
Computer Weekly

Splunk expands SOAR security tools amidst 'oceans of data'

The latest trends in software development from the Computer Weekly Application Developer Network. Splunk has expanded its cyber threat security portfolio with advanced software-as-a-platform powered ...
CRN

Splunk To Acquire Security Orchestration And Automation Response Software Provider Phantom Cyber

Machine data analytics software provider Splunk is acquiring Phantom Cyber Corp., a developer of security orchestration, automation and response (SOAR) software, for $350 million under a definitive ...