Attackers are exploiting a recently discovered security vulnerability in Splunk Enterprise, allowing malicious code to be injected and executed. The vulnerability affects versions prior to 10.2.4 and 10.0.7. Unauthenticated users can perform file operations through a PostgreSQL-sidecar service endpoint without authentication. Splunk has released updates to address the issue, which is classified as critical with a CVSS score of 9.8. Temporary mitigation measures are recommended for environments where immediate upgrades are not possible.
Bias read (Center): The article provides a factual report on a technical security vulnerability in software, including details about affected versions, the nature of the exploit, and recommended fixes. There is no political framing, bias, or ideological emphasis present in the content.
Why these scores (Factual 95 · Objective 90): The article provides detailed technical information about the vulnerability including version numbers, CVE identifier, and mitigation steps. It cites Splunk's official statement and uses neutral language. Minor omissions at the end do not affect overall accuracy.





