We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2025-20231

Sensitive Information Disclosure in Splunk Secure Gateway App



Description

In Splunk Enterprise versions below 9.4.1, 9.3.3, 9.2.5, and 9.1.8, and versions below 3.8.38 and 3.7.23 of the Splunk Secure Gateway app on Splunk Cloud Platform, a low-privileged user that does not hold the “admin“ or “power“ Splunk roles could run a search using the permissions of a higher-privileged user that could lead to disclosure of sensitive information.<br><br>The vulnerability requires the attacker to phish the victim by tricking them into initiating a request within their browser. The authenticated low-privileged user should not be able to exploit the vulnerability at will.

Reserved 2024-10-10 | Published 2025-03-26 | Updated 2025-03-28 | Assigner cisco


HIGH: 7.1CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Problem types

Information written to log files can be of a sensitive nature and give valuable guidance to an attacker or expose sensitive user information.

Product status

9.4 before 9.4.1
affected

9.3 before 9.3.3
affected

9.2 before 9.2.5
affected

9.1 before 9.1.8
affected

3.8 before 3.8.38
affected

3.7 before 3.7.23
affected

Credits

Anton (therceman)

References

advisory.splunk.com/advisories/SVD-2025-0302

cve.org (CVE-2025-20231)

nvd.nist.gov (CVE-2025-20231)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2025-20231

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.