Third Party Package Update in Splunk Add-on for Google Cloud Platform
Advisory ID: SVD-2023-1102
CVE ID: Multiple
Last Update: 2023-11-16
Splunk remedied common vulnerabilities and exposures (CVEs) in Third Party Packages in version 4.3.0 of Splunk Add-on for Google Cloud Platform.
|certifi||Upgraded to 2023.7.22||CVE-2023-37920|
|urllib3||Upgraded to 1.26.18||CVE-2023-45803|
|urllib3||Upgraded to 1.26.18||CVE-2023-43804|
|postcss||Upgraded to 8.4.31||CVE-2023-44270|
|semver||Upgraded to 6.3.1 and 7.5.4||CVE-2022-25883|
For Splunk Add-on for Google Cloud Platform, upgrade versions to 4.3.0 or higher.
|Product||Version||Component||Affected Version||Fix Version|
|Splunk Add-on for Google Cloud Platform||-||-||Below 4.3.0||4.3.0|
For the CVEs in this list, Splunk adopted the national vulnerability database (NVD) common vulnerability scoring system (CVSS) rating to align with industry standards.