Third Party Package Update in Splunk Add-on for Google Cloud Platform

Advisory ID: SVD-2023-1102

CVE ID:  Multiple

Published: 2023-11-16

Last Update: 2023-11-16


Splunk remedied common vulnerabilities and exposures (CVEs) in Third Party Packages in version 4.3.0 of Splunk Add-on for Google Cloud Platform.

certifiUpgraded to 2023.7.22CVE-2023-37920Critical
urllib3Upgraded to 1.26.18CVE-2023-45803Medium
urllib3Upgraded to 1.26.18CVE-2023-43804High
postcssUpgraded to 8.4.31CVE-2023-44270Medium
semverUpgraded to 6.3.1 and 7.5.4CVE-2022-25883High


For Splunk Add-on for Google Cloud Platform, upgrade versions to 4.3.0 or higher.

Product Status

ProductVersionComponentAffected VersionFix Version
Splunk Add-on for Google Cloud Platform--Below


For the CVEs in this list, Splunk adopted the national vulnerability database (NVD) common vulnerability scoring system (CVSS) rating to align with industry standards.