CVE-2025-7051
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-08-21
Last updated on: 2025-09-08
Assigner: N-able
Description
Description
On N-central, it is possible for any authenticated user to read, write and modify syslog configuration across customers on an N-central server. This vulnerability is present in all deployments of N-central prior to 2025.2.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| n-able | n-central | to 2025.2 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-284 | The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in N-central allows any authenticated user to read, write, and modify syslog configuration across customers on an N-central server. It affects all deployments of N-central prior to version 2025.2.
How can this vulnerability impact me? :
An attacker with authenticated access could alter syslog configurations for multiple customers, potentially leading to unauthorized access, data manipulation, or disruption of logging and monitoring functions, which could compromise system integrity and availability.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70