318/69 Friday, June 12, 2026
Splunk and Palo Alto Networks have released security updates addressing multiple vulnerabilities across their products, including several high-severity and critical flaws. These vulnerabilities could potentially allow attackers to create or modify files without authorization, as well as access or alter resources that should be restricted.
Palo Alto Networks addressed CVE-2026-0274 in the CommvaultSecurityIQ integration for Cortex XSOAR and Cortex XSIAM. The vulnerability stems from improper credential validation, which could allow an unauthenticated attacker to access or modify protected resources. Rated as High severity, the issue affects CommvaultSecurityIQ Marketplace versions 1.1.0 through 1.1.9 and has been fixed in version 1.2.0. Palo Alto Networks stated that there is currently no evidence of active exploitation in the wild.
Splunk also published several security advisories, including CVE-2026-20253, the most severe vulnerability addressed in this release. Affecting Splunk Enterprise, the flaw carries a CVSS score of 9.8 and could allow an unauthenticated attacker to create or corrupt files through a PostgreSQL sidecar service endpoint that lacks proper authentication controls. In addition, Splunk patched multiple high-severity vulnerabilities that could lead to remote code execution (RCE), server-side request forgery (SSRF), cross-site scripting (XSS), and security issues in third-party software components. Organizations using Splunk and Palo Alto Networks products are strongly advised to review their deployed versions and apply the recommended security updates as soon as possible.
Source https://www.securityweek.com/splunk-palo-alto-networks-patch-severe-vulnerabilities/