CVE-2025-20324 | Splunk Enterprise/Enterprise Cloud REST Endpoint sourcetypes access control (SVD-2025-0707)

Inserito da Angelo Barbosa | Lug 7, 2025 | CVE

A vulnerability classified as critical was found in Splunk Enterprise and Enterprise Cloud. Affected by this vulnerability is an unknown functionality of the file /servicesNS/nobody/search/admin/sourcetypes/ of the component REST Endpoint. The manipulation leads to improper access controls.

This vulnerability is known as CVE-2025-20324. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-20324 | Splunk Enterprise/Enterprise Cloud REST Endpoint sourcetypes access control (SVD-2025-0707)

Post correlati

CVE-2023-6374 | Mitsubishi Electric MELSEC WS Series WS0-GETH00200 and authentication replay

CVE-2024-30801 | Cloud Based Customer Service Management Platform 1.0.0 Login.asp sql injection

CVE-2024-5913 | Palo Alto Networks PAN-OS/Cloud NGFW/Prisma Access Physical File System input validation

CVE-2025-5145 | Netcore POWER13 up to 20250508 Query String /www/cgi-bin/ command injection