CVE-2026-20203 — Improper Access Control
Image via images.unsplash.com
CVE-2026-20203 — In Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.10, and 9.3.11, and Splunk Cloud Platform versions below 10.4.2603.0, 10.3.2512.6, 10.2.2510.10, 10.1.2507.19, 10.0.2503.13, and 9.3.2411.127, a low-privileged user that does not hold the `admin` or `power` Splunk roles, has wr
Indicators of Compromise
| ID | Type | Indicator |
|---|---|---|
| CVE-2026-20203 | vulnerability | CVE-2026-20203 |
| CWE-284 | weakness | CWE-284 |
Source & Attribution
| Source Platform | NVD |
| Channel | National Vulnerability Database |
| Published | April 15, 2026 at 19:16 UTC |
This content was curated and summarized by Shimi's Cyber World for informational purposes. It is not copied or republished in full. All intellectual property rights remain with the original author and source.
Believe this infringes your rights? Submit a takedown request.
Related Posts
Velociraptor Vulnerability Exposes Multi-Org Data
CVE-2026-6290 — Velociraptor versions prior to 0.76.3 contain a vulnerability in the query() plugin which allows access to all orgs with the user's current ACL...
CVE-2026-33214 — Weblate is a web based localization tool. In versions prior
CVE-2026-33214 — Weblate is a web based localization tool. In versions prior to 5.17, the translation memory API exposed unintended endpoints, which in turn didn't...
Git for Windows NTLM Hash Leak Poses Credential Risk
CVE-2026-32631 — Git for Windows is the Windows port of Git. Versions prior to 2.53.0.windows.3 do not have protections that prevent attackers from obtaining a...