CVE-2025-7051

High CVSS: 8.3

On N-central, it is possible for any authenticated user to read, write and modify syslog configuration across customers on an N-central server. This vulnerability is present in all deployments of N-central prior to 2025.2.

Vendor

N-able

Product

N-central

CWE

CWE-284

Yayın Tarihi

2025-08-21 18:15:37

Güncelleme

2025-09-08 16:15:50

Source Identifier

a5532a13-c4dd-4202-bef1-e0b8f2f8d12b

KEV Date Added

Kategoriler

CWE-284 N-central HIGH N-able 2025

Referanslar

https://documentation.n-able.com/N-central/Release_Notes/GA/Content/N-central_2025.2_Release_Notes.htm

Benzer Kayıtlar

Critical

CVE-2025-11366

N-central < 2025.4 is vulnerable to authentication bypass via path traversal

Critical

CVE-2025-11367

The N-central Software Probe < 2025.4 is vulnerable to Remote Code Execution via deserialization

High

CVE-2025-11700

N-central versions < 2025.4 are vulnerable to multiple XML External Entities injection leading to information disclosure

High

CVE-2025-10231

An Incorrect File Handling Permission bug exists on the N-central Windows Agent and Probe that, in the right circumstanc…

Critical

CVE-2025-8875

Deserialization of Untrusted Data vulnerability in N-able N-central allows Local Execution of Code.This issue affects N-…

Critical

CVE-2025-8876

Improper Input Validation vulnerability in N-able N-central allows OS Command Injection.This issue affects N-central: be…