A severe vulnerability in Splunk Enterprise and Splunk Cloud Platform has been identified, allowing for Remote Code Execution (RCE) via file uploads.
This exploit can be triggered by a low-privileged user, highlighting significant security risks for affected organizations.
https://gbhackers.com/splunk-rce-vulnerability-2/