Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Watchlists Beta Browse News Feed Stats About Contact

Splunk Enterprise security update for CVE-2026-20253

Security Patch Release
First reported
Last updated
Happening score
H score 42
1 unique sources, 1 articles

Summary

Hide ▲

Splunk released security updates for CVE-2026-20253, fixing a critical Splunk Enterprise flaw that could enable unauthenticated file operations and remote code execution. The update covers Splunk Enterprise 10.0.0 to 10.0.6 and 10.2.0 to 10.2.3, with fixes in 10.0.7 and 10.2.4. Splunk Cloud is not impacted.

Related Happenings

Fortinet security patch release for CVE-2026-25089

Security Patch Release
H score44 First: 10.06.2026 18:10 Last: 10.06.2026 18:10 Sources 1

About this happening: **Fortinet**, **Ivanti**, and **SAP** released **security updates** that address multiple **critical vulnerabilities** across **FortiSandbox**, **Ivanti Sentry**, and **SAP** prod...

Latest development: 11.06.2026 09:20

Shadowserver reported large-scale exploitation attempts against Internet-exposed Ivanti Sentry gateways after CVE-2026-10520 was patched in R10.5.2, R10.6.2, and R10.7.1, saying it saw 19 vulnerable instances and at least 2 backdoored systems and warning that unpatched devices were most likely compromised.

Open Happening

Ivanti security patch release for CVE-2026-8043

Security Patch Release
H score25 First: 18.05.2026 13:54 Last: 18.05.2026 13:54 Sources 1

About this happening: **Ivanti, Fortinet, SAP, Broadcom, and n8n** released **security fixes** on **2026-05-18** for flaws that could enable **authentication bypass**, **remote code execution**, **SQL...

Open Happening

SAP security patch release for CVE-2019-17571

Security Patch Release
H score26 First: 11.03.2026 14:26 Last: 11.03.2026 14:26 Sources 1

About this happening: **SAP** released security updates for **two critical flaws** in **FS-QUO** and **NetWeaver Enterprise Portal Administration**, reducing the risk of **arbitrary code execution** on...

Open Happening

CISA updates KEV entry for CVE-2026-1731

Public Sector Action
H score51 First: 20.02.2026 17:45 Last: 20.02.2026 17:45 Sources 1

About this happening: **CISA** updated its **KEV catalog** entry for **CVE-2026-1731**, confirming the flaw has been used in **ransomware campaigns** and elevating its government-tracked risk. The upda...

Open Happening

CISA SmarterMail remediation guidance for CVE-2026-24423

Advisory/Mitigation
H score56 First: 06.02.2026 19:16 Last: 06.02.2026 19:16 Sources 1

About this happening: **SmarterMail** is at the center of a **CVE-2026-24423** remediation and exploitation wave: the flaw enables **unauthenticated remote code execution** in versions prior to **Build...

Open Happening

Timeline

  1. 13.06.2026 16:23 2 articles · 4h ago

    Splunk releases fixes for CVE-2026-20253 in Splunk Enterprise

    Mitigation Patch Update

    Splunk released security updates for CVE-2026-20253 in Splunk Enterprise, fixing an unauthenticated flaw in the PostgreSQL sidecar service endpoint that could allow arbitrary file creation or truncation and possible remote code execution. Affected releases are Splunk Enterprise 10.0.0 to 10.0.6 and 10.2.0 to 10.2.3, with fixes in 10.0.7 and 10.2.4; Splunk Enterprise 10.4 is not affected and Splunk Cloud is not impacted. watchTowr Labs detailed a pre-auth attack path through /v1/postgres/recovery/backup and /v1/postgres/recovery/restore that could overwrite a Python script such as /opt/splunk/etc/apps/splunk_secure_gateway/bin/ssg_enable_modular_input.py.

    Show sources
    Open in new tab