cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2025-22621,https://securityvulnerability.io/vulnerability/CVE-2025-22621,Improper Access Control in Splunk App for SOAR by Splunk,"Versions of the Splunk App for SOAR up to and including 1.0.67 contain a vulnerability that stems from the Splunk documentation suggesting the addition of the 'admin_all_objects' capability to the 'splunk_app_soar' role. This misconfiguration could allow low-privileged users without the appropriate 'admin' roles to gain unauthorized access to critical application functions, potentially leading to unauthorized data exposure or manipulation. It is crucial for users to review their role assignments and ensure that access controls are appropriately set to mitigate this risk.",Splunk,Splunk App For Soar,6.4,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-07T17:15:00.000Z,0