Third-Party Package Updates in Enterprise Security 7.3.4 - July 2025

Advisory ID: SVD-2025-0714

CVE ID: Multiple

Published: 2025-07-30

Last Update: 2025-07-30

Description

Splunk remedied common vulnerabilities and exposures (CVEs) in Third Party Packages in Enterprise Security versions 7.3.4 and higher, including the following:

PackageRemediationCVESeverity
canvg1Upgraded to 3.0.11CVE-2025-25977High

1 Upgraded canvg from 3.0.10 to 3.0.11 to remedy CVE-2025-25977.

Solution

Upgrade Enterprise Security to versions 7.3.4 or higher.

Product Status

ProductBase VersionAffected VersionFix Version
Enterprise Security7.3Below 7.3.47.3.4

Severity

For the CVEs in this list, Splunk adopted the severity rating that the vendor published.