> TritonInfoSec News
Home / Jun 19, 2026 / Story
0
#5 SecurityWeek general June 19, 2026 at 04:10 UTC

Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure

By Eduard Kovacs

AI Summary

CVE-2026-20253, an unauthenticated remote code execution vulnerability in Splunk Enterprise, is already being exploited in the wild just days after public disclosure, prompting CISA to issue a binding directive giving federal agencies only three days to patch. The rapid weaponization of this flaw underscores the shrinking window between vulnerability disclosure and active exploitation.

Read full article → https://www.securityweek.com/splunk-enterprise-vul…

Relevance score: 84.0/100

# More from June 19

  1. 1
    Police cleans nearly 15,000 SocGholish-infected sites tied to Evil Corp BleepingComputer
  2. 2
    Accenture to Acquire Majority Stake in Dragos, All of runZero, NetRise in $4.1 Billion OT Cybersecurity Push SecurityWeek
  3. 3
    ‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm Krebs on Security
  4. 4
    F5 issues out-of-band patches for critical NGINX vulnerabilities BleepingComputer
  5. 6
    Killing me gently: Inside Gentlemen’s EDR killer framework WeLiveSecurity (ESET)
  6. 7
    DragonForce Hackers Abuse Microsoft Teams Relays to Hide Backdoor.Turn C2 Traffic The Hacker News
  7. 8
    Klue OAuth breach linked to 'Icarus' Salesforce data theft attacks BleepingComputer
  8. 9
    Attackers hit pair of critical Fortinet vulnerabilities the vendor disclosed in April CyberScoop
  9. 10
    INC Ransomware Emerges as Major RaaS Threat in 2026 with 830+ Victims Since 2023 The Hacker News