Public PoC Released for Deserialization RCE Vulnerability in Splunk Secure Gateway
A public proof-of-concept (PoC) exploit has been released for CVE-2026-20251, a high-severity remote code execution (RCE) vulnerability affecting Splunk Secure Gateway (SSG). The flaw, carrying a CVSS score of 8.8, allows a low-privileged authenticated attacker to execute arbitrary code on the Splunk host server without requiring admin or power-level roles. CVE-2026-20251 resides in Splunk Secure […]
The post Public PoC Released for Deserialization RCE Vulnerability in Splunk Secure Gateway appeared first on Cyber Security News.