CVE-2026-20266
CRITICALOS Command Injection in the btool Configuration Helper in Splunk AI Toolkit
Title source: cnaDescription
In Splunk AI Toolkit versions below 5.7.4, a user who holds the "admin" Splunk role could execute arbitrary OS commands on the host running the Splunk Enterprise instance. The vulnerability is possible because of an unsafe shell execution pattern in the btool configuration helper, which constructs OS command strings from dynamic parameters without disabling shell interpretation.
References (1)
Core 1
Core References
Scores
CVSS v3
9.1
EPSS
0.0047
EPSS Percentile
37.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-78
Status
published
Products (2)
splunk/ai_toolkit
5.7.0 - 5.7.4
Splunk/Splunk AI Toolkit
5.7 - 5.7.4
Published
Jun 17, 2026
Tracked Since
Jun 17, 2026