Lucene search
K

282 matches found

NVD
NVD
added 2025/12/03 5:15 p.m.4 views

CVE-2025-20383

In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and below 3.9.10, 3.8.58, and 3.7.28 of Splunk Secure Gateway app in Splunk Cloud Platform, a low-privileged user that does not hold the "admin" or "power" Splunk roles and subscribes to mobile push notifications could receive...

4.3CVSS0.00271EPSS
Exploits0References1
CVE
CVE
added 2025/12/03 5:0 p.m.12 views

CVE-2025-20389

CVE-2025-20389 affects Splunk Enterprise and the Splunk Secure Gateway app. A low-privilege user (not admin/power) can craft a malicious payload via the label column after adding a new device in Splunk Secure Gateway, potentially causing a client-side DoS. Affected versions: Splunk Enterprise &lt...

6.5CVSS6.2AI score0.00371EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2025/12/03 5:0 p.m.16 views

CVE-2025-20389 Improper Input Validation in "label" column field in Splunk Secure Gateway App

In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and versions below 3.9.10, 3.8.58 and 3.7.28 of the Splunk Secure Gateway app on Splunk Cloud Platform, a low-privileged user that does not hold the "admin" or "power" Splunk roles could craft a malicious payload through the...

4.3CVSS0.00371EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/03 5:0 p.m.4 views

CVE-2025-20389 Improper Input Validation in "label" column field in Splunk Secure Gateway App

In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and versions below 3.9.10, 3.8.58 and 3.7.28 of the Splunk Secure Gateway app on Splunk Cloud Platform, a low-privileged user that does not hold the "admin" or "power" Splunk roles could craft a malicious payload through the...

4.3CVSS6.2AI score0.00371EPSS
Exploits0References1
CVE
CVE
added 2025/12/03 5:0 p.m.12 views

CVE-2025-20383

CVE-2025-20383 affects Splunk Enterprise (below 10.0.2 and older 9.x branches) and the Splunk Secure Gateway app (below 3.7.28/3.8.58/3.9.10) in Splunk Cloud Platform. A low-privilege user with mobile push notifications enabled can see the title and description of reports/alerts they are not auth...

4.3CVSS6.2AI score0.00271EPSS
Exploits0References1Affected Software3
Vulnrichment
Vulnrichment
added 2025/12/03 5:0 p.m.3 views

CVE-2025-20383 Improper access control through push notifications for reports and alerts in Splunk Secure Gateway app

In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and below 3.9.10, 3.8.58, and 3.7.28 of Splunk Secure Gateway app in Splunk Cloud Platform, a low-privileged user that does not hold the "admin" or "power" Splunk roles and subscribes to mobile push notifications could receive...

4.3CVSS6.2AI score0.00271EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/03 5:0 p.m.15 views

CVE-2025-20383 Improper access control through push notifications for reports and alerts in Splunk Secure Gateway app

In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and below 3.9.10, 3.8.58, and 3.7.28 of Splunk Secure Gateway app in Splunk Cloud Platform, a low-privileged user that does not hold the "admin" or "power" Splunk roles and subscribes to mobile push notifications could receive...

4.3CVSS0.00271EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/03 12:0 a.m.6 views

PT-2025-48961

Name of the Vulnerable Software and Affected Versions Splunk Enterprise versions prior to 10.0.2 Splunk Enterprise versions 9.2.10 through 9.4.6 Splunk Enterprise versions 9.3.8 Splunk Secure Gateway app versions below 3.7.28 Splunk Secure Gateway app versions 3.8.58 and below Splunk Secure Gatew...

6.5CVSS6.2AI score0.00371EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/12/03 12:0 a.m.6 views

Splunk Enterprise和Splunk Secure Gateway 输入验证错误漏洞

Splunk Enterprise and Splunk Secure Gateway are both products of Splunk Corporation, U.S.A. Splunk Enterprise is a suite of data collection and analysis software.Splunk Secure Gateway is a secure gateway. Splunk Enterprise and Splunk Secure Gateway have an input validation error vulnerability tha...

6.5CVSS6.3AI score0.00371EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/03 12:0 a.m.5 views

Splunk Enterprise 9.2 < 9.2.10, 9.3 < 9.3.8, 9.4 < 9.4.6, 10.0 < 10.0.2 (SVD-2025-1208)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2025-1208 advisory. - In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and versions below 3.9.10, 3.8.58 and 3.7.28 of the...

6.5CVSS6AI score0.00371EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/03 12:0 a.m.4 views

Splunk Enterprise 9.2 < 9.2.10, 9.3 < 9.3.8, 9.4 < 9.4.6, 10.0 < 10.0.2 (SVD-2025-1202)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2025-1202 advisory. - In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and below 3.9.10, 3.8.58, and 3.7.28 of Splunk Secure...

4.3CVSS5.5AI score0.00271EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2025/11/05 12:0 a.m.5 views

Security Analysis of Agentic AI Communication Protocols: A Comparative Evaluation

Multi-agent systems MAS powered by artificial intelligence AI are increasingly foundational to complex, distributed workflows. Yet, the security of their underlying communication protocols remains critically under-examined. This paper presents the first empirical, comparative security analysis of...

7.1AI score
Exploits0
EUVD
EUVD
added 2025/10/30 6:31 p.m.6 views

EUVD-2025-37023

Dell Secure Connect Gateway SCG 5.0 Application and Appliance versions 5.26.00.00 - 5.30.00.00, contain a Relative Path Traversal vulnerability in the SCG exposed for an internal collection download REST API if this REST API is enabled by Admin user from UI. A low privileged attacker with remote...

4.3CVSS6.2AI score0.00275EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2016-1442

Malware in sbrugna...

6.1CVSS6.3AI score0.01473EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2015-8475

Malware in sbrugna...

7.4CVSS7.5AI score0.0192EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-18872

Malware in sbrugna...

8.1CVSS8.2AI score0.00478EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2009-2210

Malware in sbrugna...

5CVSS6.4AI score0.01721EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2017-16939

Malware in sbrugna...

8.8CVSS8.8AI score0.00626EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-16940

Malware in sbrugna...

6.5CVSS7AI score0.00559EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-2869

Malware in sbrugna...

3.5CVSS6.4AI score0.00978EPSS
Exploits2References4
Rows per page
Query Builder