Security Advisory

CVE-2025-20386

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-03 17:00:31

Last updated 2026-02-26 16:57:35

Assigner cisco

State PUBLISHED

Description

In Splunk Enterprise for Windows versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, a new installation of or an upgrade to an affected version can result in incorrect permissions assignment in the Splunk Enterprise for Windows Installation directory. This lets non-administrator users on the machine access the directory and all its contents.

← Browse all CVEs View on cve.org ↗