CVE-2025-20383
MEDIUMSplunk Enterprise <10.0.2,9.4.6,9.3.8,9.2.10 - Info Disclosure
Title source: llmDescription
In Splunk Enterprise versions below 10.0.2, 9.4.6, 9.3.8, and 9.2.10, and below 3.9.10, 3.8.58, and 3.7.28 of Splunk Secure Gateway app in Splunk Cloud Platform, a low-privileged user that does not hold the "admin" or "power" Splunk roles and subscribes to mobile push notifications could receive notifications that disclose the title and description of the report or alert even if they do not have access to view the report or alert.
References (1)
Core 1
Core References
Vendor Advisory
https://advisory.splunk.com/advisories/SVD-2025-1202
Scores
CVSS v3
4.3
EPSS
0.0004
EPSS Percentile
11.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-200
Status
published
Products (3)
splunk/splunk
9.2.0 - 9.2.10
splunk/splunk_cloud_platform
9.3.2411 - 9.3.2411.120
splunk/splunk_secure_gateway
3.7.0 - 3.7.28
Published
Dec 03, 2025
Tracked Since
Feb 18, 2026