Splunk and Zoom Address Critical Vulnerabilities in Latest Security Updates
Splunk and Zoom have released patches for critical and high-severity vulnerabilities affecting their platforms, with potential impacts ranging from credential theft to account takeover.

Software vendors Splunk and Zoom have jointly announced the release of security patches addressing a range of critical and high-severity vulnerabilities within their respective products. These updates are crucial for users to implement promptly to safeguard against potential exploitation, which could lead to significant data breaches and system compromises.
Splunk has issued advisories detailing three specific vulnerabilities within its own products: CVE-2026-20296, a high-severity command safeguards bypass; CVE-2026-20297, a high-severity path traversal flaw; and CVE-2026-20298, a medium-severity information disclosure bug. Successful exploitation of these issues could grant attackers the ability to steal credentials and sensitive data, write files outside of designated directories, and access stored credential hashes, severely undermining system security.
In addition to its own product vulnerabilities, Splunk's latest updates also resolve numerous critical and high-severity defects found in third-party components, including Golang, the Go compiler, and OpenSSL. These patches are integrated into Splunk Enterprise versions 10.4.1, 10.2.5, 10.0.8, and 9.4.13, ensuring a comprehensive security uplift for users.
Zoom, meanwhile, has released four advisories addressing vulnerabilities in its Windows clients and tools. The most critical among these is CVE-2026-53412, a flaw in Zoom's Workplace and Workplace VDI Client for Windows with a CVSS score of 9.8. This critical vulnerability could enable remote, unauthenticated attackers to perform account takeover attacks, posing a severe risk to user accounts and sensitive communications.
Zoom's updates also include patches for three high-severity vulnerabilities. These involve a time-of-check-to-time-of-use (TOCTOU) race condition and two separate privilege escalation issues. These flaws, if exploited, could allow attackers to gain unauthorized access or elevate their privileges within affected Zoom environments.
Both Splunk and Zoom have stated that they are not aware of any of these newly patched vulnerabilities being actively exploited in the wild. However, the presence of critical and high-severity flaws, particularly those enabling account takeover and privilege escalation, underscores the importance of immediate patching.
Users of Splunk Enterprise and Zoom clients are strongly urged to apply the latest available updates as soon as possible. Proactive patching is the most effective defense against these types of threats, preventing potential attackers from leveraging these weaknesses to compromise systems, steal data, or disrupt operations.
This coordinated patching effort by major software vendors highlights the ongoing challenges in maintaining robust cybersecurity postures. As new vulnerabilities are discovered and disclosed, it is imperative for organizations to have effective patch management strategies in place to mitigate risks associated with critical software flaws.