Third-Party Package Updates in Enterprise Security 7.3.4 - July 2025
Advisory ID: SVD-2025-0714
CVE ID: Multiple
Published: 2025-07-30
Last Update: 2025-07-30
Description
Splunk remedied common vulnerabilities and exposures (CVEs) in Third Party Packages in Enterprise Security versions 7.3.4 and higher, including the following:
| Package | Remediation | CVE | Severity |
|---|---|---|---|
| canvg1 | Upgraded to 3.0.11 | CVE-2025-25977 | High |
1 Upgraded canvg from 3.0.10 to 3.0.11 to remedy CVE-2025-25977.
Solution
Upgrade Enterprise Security to versions 7.3.4 or higher.
Product Status
| Product | Base Version | Affected Version | Fix Version |
|---|---|---|---|
| Enterprise Security | 7.3 | Below 7.3.4 | 7.3.4 |
Severity
For the CVEs in this list, Splunk adopted the severity rating that the vendor published.