Third-Party Package Updates in Splunk Enterprise - March 2025
Advisory ID: SVD-2025-0308
CVE ID: Multiple
Published: 2025-03-26
Last Update: 2025-03-26
Description
Splunk remedied common vulnerabilities and exposures (CVEs) in Third Party Packages in Splunk Enterprise versions 9.4.1, 9.3.3, 9.2.5, 9.1.8, and higher, including the following:
| Package | Remediation | CVE | Severity |
|---|---|---|---|
| idna1 | Upgraded to v3.8 | CVE-2024-3651 | Medium |
| python2 | Upgraded to v3.9.20 | CVE-2024-6923 | Medium |
1 Splunk enterprise updated $SPLUNK_HOME/lib/python3.7/site-packages/idna to version v3.8
2 Splunk enterprise updated $SPLUNK_HOME/bin/python3.9 to version v3.9.20
Solution
Upgrade Splunk Enterprise to versions 9.4.1, 9.3.3, 9.2.5, 9.1.8, or higher.
Product Status
| Product | Version | Component | Affected Version | Fix Version |
|---|---|---|---|---|
| Splunk Enterprise | 9.4 | 9.4.0 | 9.4.1 | |
| Splunk Enterprise | 9.3 | 9.3.0 to 9.3.2 | 9.3.3 | |
| Splunk Enterprise | 9.2 | 9.2.0 to 9.2.4 | 9.2.5 | |
| Splunk Enterprise | 9.1 | 9.1.0 to 9.1.7 | 9.1.8 |
Severity
For the CVEs in this list, Splunk adopted the vendor’s severity rating or the National Vulnerability Database (NVD) common vulnerability scoring system (CVSS) rating, as available.