Vulnerabilities3 min read
Splunk Enterprise Hit With Critical Unauthenticated RCE Flaw
CVE-2026-20253 scores CVSS 9.8 and allows network attackers to execute arbitrary code on Splunk Enterprise servers without authentication. No workaround exists—patching is mandatory.
Marcus ChenJun 14, 2026