Security
Splunk Enterprise CVE-2026-20253 under active exploitation
- Category: Security
- Status: confirmed
- Sources: Splunk SVD-2026-0603, Help Net Security
- Summary: Covered in Top stories. The CISA KEV federal remediation deadline is 2026-06-21. Patch to 10.0.7, 10.2.4, or 10.4.0, or disable the PostgreSQL sidecar service as an interim mitigation.
- Why it matters: The federal deadline lands today-plus-one, so unpatched SIEM deployments face an immediate exploitation window.