{"uuid": "ce3761a4-4264-4110-9c1c-69ce9d68bc76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-20253", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116749583315802938", "content": "\ud83d\udcf0 Splunk Scrambles to Patch Critical 9.8 CVSS Flaw Allowing Unauthenticated RCE\n\ud83d\udea8 CRITICAL Splunk Enterprise flaw (CVE-2026-20253) allows unauthenticated RCE! CVSS 9.8. Attackers can execute code via an insecure PostgreSQL endpoint. On-premise versions 10.0.x and 10.2.x are vulnerable. Patch now! #Splunk #RCE #CyberSecurity\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/critical-splunk-enterprise-flaw-cve-2026-20253-allows-unauthenticated-rce/?utm_s\u2026", "creation_timestamp": "2026-06-14T17:14:27.256752Z"}