CVE-2025-20386
Unknown Unknown - Not Provided

BaseFortify

Vulnerability report for CVE-2025-20386, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2025-12-03

Last updated on: 2025-12-05

Assigner: Cisco Systems, Inc.

Description

In Splunk Enterprise for Windows versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, a new installation of or an upgrade to an affected version can result in incorrect permissions assignment in the Splunk Enterprise for Windows Installation directory. This lets non-administrator users on the machine access the directory and all its contents.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2025-12-03
Last Modified
2025-12-05
Generated
2026-07-06
AI Q&A
2025-12-03
EPSS Evaluated
2026-07-05
NVD

Affected Vendors & Products

Showing 5 associated CPEs
Vendor Product Version / Range
splunk splunk From 9.2.0 (inc) to 9.2.10 (exc)
splunk splunk From 9.3.0 (inc) to 9.3.8 (exc)
splunk splunk From 9.4.0 (inc) to 9.4.6 (exc)
splunk splunk From 10.0.0 (inc) to 10.0.2 (exc)
microsoft windows *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-732 The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability occurs in Splunk Enterprise for Windows versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, where a new installation or upgrade can incorrectly assign permissions to the Splunk Enterprise installation directory. As a result, non-administrator users on the machine can gain access to the directory and all its contents, which should normally be restricted.

Impact Analysis

The vulnerability can allow non-administrator users to access sensitive files and data within the Splunk Enterprise installation directory. This unauthorized access can lead to exposure of confidential information, potential data manipulation, and compromise of system integrity, resulting in high confidentiality, integrity, and availability impacts.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-20386. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart