A high-severity vulnerability was uncovered in Splunk Universal Forwarder for Windows that compromises directory access controls. The flaw, designated CVE-2025-20298 with a CVSSv3.1 score of 8.0, affects multiple versions of the software and poses significant security risks to enterprise environments relying on Splunk’s data forwarding capabilities. The vulnerability stems from incorrect permission assignment during the […]
The post Splunk Universal Forwarder on Windows Lets Non-Admin Users Access All Contents appeared first on Cyber Security News.
This article has been indexed from Cyber Security News