Splunk released three security advisories on May 20, 2026, addressing critical vulnerabilities across Splunk Enterprise, Splunk Cloud Platform, and the Splunk AI Toolkit app. Tracked as CVE-2026-20238, CVE-2026-20239, and CVE-2026-20240, the flaws allow low-privileged attackers to trigger denial-of-service conditions, leak session cookies, and bypass role-based access controls, all without requiring administrative credentials. Splunk Patched Multiple […]
The post Splunk Patches Multiple Flaws Enabling DoS Attacks, Data Exposure appeared first on Cyber Security News.