A newly disclosed security vulnerability in Splunk Enterprise has prompted urgent patching efforts after researchers revealed that the flaw could allow unauthenticated attackers to perform arbitrary file operations and potentially achieve remote code execution. The issue, identified as CVE-2026-20253, affects certain versions of Splunk Enterprise and carries a critical CVSS score of 9.8. 

The vulnerability stems from weaknesses in a PostgreSQL sidecar service used within affected deployments. While Splunk Cloud remains unaffected, organizations running vulnerable on-premises versions of Splunk Enterprise are being urged to install security updates as soon as possible. 
CVE-2026-20253 Aff...