www.cisa.gov 6/18/2026, 11:52:58 PM · external

CISA Adds Splunk Auth Bypass Flaw to KEV Catalog, Urging Patches

Developing story vulnerability 5 articles tracked

Splunk Enterprise critical vulnerabilities (including CVE-2026-20253) exploited in the wild

CyberSIXT Evidence Panel

Primary Source

CVE Intel

CVE-2026-20253 - NVD CISA KEV due 2026-06-21 9.8 CRITICAL

CISA KEV Listed in KEV

Patch Patch Available

THE CISA's Known Exploited Vulnerabilities (KEV) Catalog serves as a critical resource for the cybersecurity community, providing an authoritative source of vulnerabilities actively exploited in the wild. Organizations are encouraged to use the KEV catalog to enhance their vulnerability management strategies. A current example in the catalog is CVE-2026-20253, a vulnerability in Splunk Enterprise that lacks authentication for a critical function, allowing unauthenticated users to manipulate files.

The catalog also offers various formats for access, including CSV and JSON, and provides links for further information and subscriptions to updates.

View Primary Source Via www.cisa.gov

Article by CyberSIXT

Timeline Coverage

Swipe to explore timeline

#5 Jun 18, 2026, 11:52 PM Current article

www.cisa.gov
CISA Adds Splunk Auth Bypass Flaw to KEV Catalog, Urging Patches
#4 Jun 18, 2026, 10:30 PM

cybersixt.com
CISA flags critical Splunk flaw enabling unauthenticated file edits
#3 Jun 18, 2026, 07:00 PM

cybersixt.com
Splunk CVE-2026-20253: CVSS 9.8 RCE Exploited in the Wild
#2 Jun 11, 2026, 11:10 AM

cybersixt.com
Palo Alto fixes Cortex flaw: Splunk patches Enterprise bug
#1 Jun 11, 2026, 04:21 AM

cybersixt.com
Check Point VPN under attack as Splunk issues urgent patches