Third-Party Package Updates in Splunk User Behavior Analytics (UBA) - April 2025
Advisory ID: SVD-2025-0418
CVE ID: Multiple
Published: 2025-04-29
Last Update: 2025-04-29
Description
Splunk remedied common vulnerabilities and exposures (CVEs) in Third Party Packages in Splunk User Behavior Analytics (UBA) version 5.4.2, including the following:
| Package | Remediation | CVE | Severity |
|---|---|---|---|
| Body-parser | Upgraded to 1.20.3 | CVE-2024-45590 | High |
| Kubernetes | Upgraded to 1.31.1 | Multiple | High |
| Kubernetes Dashboard | Upgraded to 7.10 | Multiple | High |
| Python tools1 | Upgraded to 3.12 | Multiple | High |
| Python-idna | Upgraded to 3.10 | CVE-2024-3651 | High |
| OpenJDK | Upgraded to 8u432 | Multiple | Medium |
| serve-static | Upgraded to 1.16.0 | CVE-2024-43800 | Medium |
| Send | Upgraded to 0.19.0 | CVE-2024-43799 | Medium |
| Express | Upgraded to 4.20.0 | CVE-2024-43796 | Medium |
1 Updated Python tools to 3.12 to remedy CVE-2019-11236, CVE-2020-26137, CVE-2022-40897, CVE-2022-40898, CVE-2023-43804, CVE-2023-45803, CVE-2024-37891, and CVE-2024-6345.
Solution
Upgrade Splunk User Behavior Analytics (UBA) to version 5.4.2 or higher.
Product Status
| Product | Version | Component | Affected Version | Fix Version |
|---|---|---|---|---|
| Splunk User Behavior Analytics (UBA) | 5.4 | - | Below 5.4.2 | 5.4.2 |
Severity
For the CVEs in this list, Splunk adopted the national vulnerability database (NVD) common vulnerability scoring system (CVSS) rating to align with industry standards.