Security
Splunk Enterprise CVE-2026-20253 under active exploitation, deadline today
- Category: Security
- Status: confirmed
- Sources: Splunk SVD-2026-0603, Horizon3.ai
- Summary: Covered in Top stories. The CISA KEV federal remediation deadline is 2026-06-21. Patch to 10.0.7, 10.2.4, or 10.4.0, or disable the PostgreSQL sidecar service as an interim mitigation. The CISA KEV catalog held at version 2026.06.18 (count 1623) on the publish-time check, with no addition dated 2026-06-19 or 2026-06-20.
- Why it matters: An unauthenticated file-write reachable over the network gives attackers a direct path into the monitoring layer, and the deadline arriving today raises the stakes for unpatched SIEM deployments.