In Universal Forwarder for Windows versions below 9.4.2, 9.3.4, 9.2.6, and 9.1.9, a new installation of or an upgrade to an affected version can result in incorrect permissions assignment in the Universal Forwarder for Windows Installation directory (by default, C:\Program Files\SplunkUniversalForwarder). This lets non-administrator users on the machine access the directory and all its contents.
2025-06-02T18:15:23.560
2025-08-04T18:19:54.633
Analyzed
CVSSv3.1: 8.0 (HIGH)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | splunk | universal_forwarder | < 9.1.9 | Yes |
| Application | splunk | universal_forwarder | < 9.2.6 | Yes |
| Application | splunk | universal_forwarder | < 9.3.4 | Yes |
| Application | splunk | universal_forwarder | < 9.4.2 | Yes |
| Operating System | microsoft | windows | - | No |