A serious security flaw in Splunk Enterprise for Windows exposes organizations to local privilege escalation attacks through DLL search-order hijacking. Tracked as CVE-2026-20140 under advisory SVD-2026-0205, this vulnerability affects versions below 10.2.0, 10.0.3, 9.4.8, 9.3.9, and 9.2.12. Published on February 18, 2026, it carries a CVSSv3.1 score of 7.7 (High), with the vector CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H. The […] The post Splunk Enterprise for Windows Vulnerability Allows DLL Hijacking and SYSTEM Access appeared first on Cyber Security News.