- Splunk has released a security update that addresses a vulnerability in Splunk products.
- the vulnerability being addressed is CVE-2026-20253, which is an arbitrary file creation and file content deletion vulnerability in Splunk Enterprise.
- users should follow the instructions on the reference site to update to the latest version of the Vulnerability Patch.
- affected Versions are Splunk Enterprise 10.2.0 and earlier and 10.2.3 and earlier and 10.0.0 and earlier and 10.0.6 and earlier.
- patched versions are Splunk Enterprise 10.2.4 and later and 10.0.7 and later.
- the reference includes the description “Unauthenticated Arbitrary File Creation and Truncation in a PostgreSQL Sidecar Service Endpoint in Splunk Enterprise”.
