Medium severity4.3NVD Advisory· Published Jul 7, 2025· Updated Jun 17, 2026
CVE-2025-20323
CVE-2025-20323
Description
In Splunk Enterprise versions below 9.4.3, 9.3.5, 9.2.7, and 9.1.10, a low-privileged user that does not hold the "admin" or "power" Splunk roles could turn off the scheduled search Bucket Copy Trigger within the Splunk Archiver application. This is because of missing access controls in the saved searches for this app.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: <9.4.3, <9.3.5, <9.2.7, <9.1.10
<9.4.3, <9.3.5, <9.2.7, <9.1.10+ 1 more
- (no CPE)range: <9.4.3, <9.3.5, <9.2.7, <9.1.10
- (no CPE)range: 9.4
Patches
Vulnerability mechanics
References
1- advisory.splunk.com/advisories/SVD-2025-0706nvdVendor Advisory
News mentions
0No linked articles in our index yet.