Configuration Exposure in N-central by N-able
CVE-2025-7051

8.3HIGH

Key Information:

Vendor: N-able
Status: N-central
Vendor: CVE Published:; 21 August 2025

What is CVE-2025-7051?

A configuration exposure vulnerability in N-central allows any authenticated user to read, write, and modify syslog configurations across different customers on an N-central server. This presents significant security risks as it enables unauthorized alterations to vital logging settings, potentially compromising the integrity and confidentiality of syslog data. The vulnerability impacts all versions of N-central before 2025.2, necessitating immediate evaluations and potential remediation for those using the affected system.

Affected Version(s)

N-central 2024.6.0 <= 2024.6.16

N-central 2025.1

References

https://documentation.n-able.com/N-central/Release_Notes/...

CVSS V3.1

Score:

8.3

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 21, 2025
Vulnerability Reserved
Jul 3, 2025