Splunk security advisory (AV26-614)
Serial number: AV26-614 Date: June 17, 2026 On June 17, 2026, Splunk published security advisories to address vulnerabilities in the following product. Included was a critical update for the following: Splunk AI Toolkit – versions prior to 5.7.4 The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates. OS Command Injection in the btool Configuration Helper in Splunk AI Toolkit Splunk Security Advisories
CSIRTS triage
- What
- OS Command Injection vulnerability in the btool Configuration Helper.
- Who is affected
- Users of Splunk AI Toolkit versions prior to 5.7.4.
- Urgency
- Remediation is critical due to the potential for exploitation.
- Action
- Update to Splunk AI Toolkit version 5.7.4 or later.
AI-assisted analysis generated from the source advisory — verify against the original.
⚡ Watch Splunk AI Toolkit
Get an email when a new Splunk AI Toolkit advisory drops — max one per day, one-click unsubscribe.
Details
Original advisory: https://cyber.gc.ca/en/alerts-advisories/splunk-security-advisory-av26-614
More from Canadian Centre for Cyber Security
- unknownBitWarden security advisory (AV26-683)2026-07-10
- criticalAL25-007 - Vulnerability impacting Roundcube Webmail – CVE-2025-49113 – Update 12026-07-10
- unknownMicrosoft Edge security advisory (AV26-682)2026-07-10
- criticalBroadcom VMware security advisory (AV26-681)2026-07-10
- unknownDjango security advisory (AV26-084) – Update 12026-07-09