Splunk Enterprise and Cloud flaw can lead to remote code execution in Splunk Web

Splunk has disclosed a high-severity vulnerability in Splunk Enterprise and Splunk Cloud Platform that can let a low-privileged user achieve remote code execution in affected environments. The flaw, tracked as CVE-2026-20204, carries a CVSS 3.1 score of 7.1 and affects systems with Splunk Web enabled. The issue is not an unauthenticated internet bug. Splunk says […] The post Splunk Enterprise and Cloud flaw can lead to remote code execution in Splunk Web appeared first on VPN Central.