CVE-2025-22621

Published Jan 7, 2025

Last updated 21 days ago

Overview

Description
In versions 1.0.67 and lower of the Splunk App for SOAR, the Splunk documentation for that app recommended adding the `admin_all_objects` capability to the `splunk_app_soar` role. This addition could lead to improper access control for a low-privileged user that does not hold the "admin" Splunk roles.
Source
prodsec@splunk.com
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
6.4
Impact score
5.2
Exploitability score
1.2
Vector string
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N
Severity
MEDIUM

Weaknesses

prodsec@splunk.com
CWE-269

Social media

Hype score
Not currently trending