CVE-2026-20202 | Splunk Enterprise/Cloud Platform Username edit_user unicode encoding (SVD-2026-0401)

A vulnerability has been found in Splunk Enterprise and Cloud Platform and classified as critical. Affected by this vulnerability is the function edit_user of the component Username Handler. The manipulation leads to improper handling of unicode encoding.

This vulnerability is documented as CVE-2026-20202. The attack can be initiated remotely. There is not any exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More