CVE-2025-20381

SPL commands allowlist controls bypass in Splunk MCP Server app through "run_splunk_query" MCP tool

Description

In Splunk MCP Server app versions below 0.2.4, a user with access to the "run_splunk_query" Model Context Protocol (MCP) tool could bypass the SPL command allowlist controls in MCP by embedding SPL commands as sub-searches, leading to unauthorized actions beyond the intended MCP restrictions.

INFO

Published Date :

2025-12-03T17:00:25.945Z

Last Modified :

2025-12-03T21:29:51.839Z

Source :

cisco

AFFECTED PRODUCTS

The following products are affected by CVE-2025-20381 vulnerability.

Vendors	Products
Splunk	Mcp Server

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-20381.

URL	Resource
https://advisory.splunk.com/advisories/SVD-2025-1210

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact