
Splunk Secure Gateway RCE Flaw Lets Low-Privileged Users Execute OS Commands
A critical remote code execution vulnerability has been disclosed in Splunk Secure Gateway, tracked as CVE-2026-20251 with a CVSS score of 8.8 (High). The flaw enables a low-privileged authenticated user to execute arbitrary operating system commands on the underlying Splunk host without any administrative access. The vulnerability was discovered by security researcher Fady Oueslati of […]
The post Splunk Secure Gateway RCE Flaw Lets Low-Privileged Users Execute OS Commands appeared first on Cyber Security News.