{"vulnerability": "cve-2026-20266", "sightings": [{"uuid": "8472a0e6-cdbf-4d0e-a990-593e979a085c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20266", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mojas23eof2f", "content": "CVE-2026-20266 - OS Command Injection in the btool Configuration Helper in Splunk AI Toolkit\nCVE ID : CVE-2026-20266\n \n Published : June 17, 2026, 5:07 p.m. | 2\u00a0hours, 22\u00a0minutes ago\n \n Description : In Splunk AI Toolkit versions below 5.7.4, a user who holds the \"admin\" Splun...", "creation_timestamp": "2026-06-17T21:24:42.090271Z"}, {"uuid": "64422085-dd31-4644-a68f-ccb9895e3091", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20266", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mokvncudk626", "content": "\ud83d\udd17 CVE : CVE-2026-20265, CVE-2026-20266", "creation_timestamp": "2026-06-18T13:10:36.182719Z"}, {"uuid": "5ae2fea1-fdaf-4198-83ac-742aeee1e921", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-20266", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mojyldna6o2w", "content": "Splunk AI Toolkit 5.7 CRITICAL flaw: Admins can run arbitrary OS commands via unsafe shell execution. Restrict admin access & check vendor guidance ASAP. https://radar.offseq.com/threat/cve-2026-20266-the-software-constructs-all-or-part-32c0ef3d9fc0383c #OffSeq #Splunk #Vuln", "creation_timestamp": "2026-06-18T04:30:27.004364Z"}, {"uuid": "5a081147-5f4f-4de1-ae90-e87a8f471c0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20266", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116772767712875970", "content": "\ud83d\udcf0 Atlassian and Splunk Push Critical Patches for RCE and Dependency Flaws\nPATCH NOW \ud83d\udea8: Splunk & Atlassian drop critical security updates. Splunk AI Toolkit has a 9.1 CVSS RCE flaw (CVE-2026-20266). Atlassian fixes ~100 dependency bugs in Jira, Confluence & more. #CyberSecurity #Vulnerability #PatchTuesday\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/atlassian-and-splunk-release-patches-for-critical-vulnerabilities/?utm_source=mastodon&utm_medium=social&utm_campaign=daily", "creation_timestamp": "2026-06-18T19:30:46.445479Z"}, {"uuid": "743d5091-817c-44b1-96b6-a83bd140ef6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-20266", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3molkvphoiz25", "content": "PATCH NOW \ud83d\udea8: Splunk & Atlassian drop critical security updates. Splunk AI Toolkit has a 9.1 CVSS RCE flaw (CVE-2026-20266). Atlassian fixes ~100 dependency bugs in Jira, Confluence & more. #CyberSecurity #Vulnerability #PatchTuesday\n\n\ud83c\udf10 cyber[.]netsecops[.]io", "creation_timestamp": "2026-06-18T19:31:03.121721Z"}]}