The Hacker News

Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication

Splunk issued security updates for a critical CVSS 9.8 vulnerability in Splunk Enterprise that allows unauthenticated remote ...
latesthackingnews.com

How CVE-2026-20253 Turns Splunk’s PostgreSQL Sidecar Into an Open Door

CVE-2026-20253 is a CVSS 9.8 pre-auth flaw in Splunk Enterprise's PostgreSQL sidecar service. An unauthenticated attacker can ...

Splunk Enterprise: Attacks on Code Smuggling Vulnerability

Splunk warns that malicious actors are attacking a critical code smuggling vulnerability in Splunk Enterprise. Updates are ...
SecurityWeek

Atlassian, Splunk Patch Critical Vulnerabilities

Atlassian and Splunk have released patches for critical vulnerabilities, including dozens of flaws in third-party ...
SecurityWeek

Splunk, Palo Alto Networks Patch Severe Vulnerabilities

Splunk and Palo Alto Networks have released patches for critical and high-severity vulnerabilities across their products.
Computer Weekly

Splunk expands SOAR security tools amidst 'oceans of data'

The latest trends in software development from the Computer Weekly Application Developer Network. Splunk has expanded its cyber threat security portfolio with advanced software-as-a-platform powered ...
CRN

Splunk To Acquire Security Orchestration And Automation Response Software Provider Phantom Cyber

Machine data analytics software provider Splunk is acquiring Phantom Cyber Corp., a developer of security orchestration, automation and response (SOAR) software, for $350 million under a definitive ...
CRN

Potential Cisco-Splunk Deal ‘Massive’ for Software, Security Focus: Partners

‘That Cisco could be making the move for one of the most reputable names in the SIEM space could take them to another level,’ one Cisco and Splunk partner tells CRN. A Cisco-Splunk tie-up would close ...