Third-Party Package Updates in Splunk Universal Forwarder - July 2026

Advisory ID: SVD-2026-0706

CVE ID: Multiple

Published: 2026-07-15

Last Update: 2026-07-15

Description

Splunk remedied common vulnerabilities and exposures (CVEs) in Third Party Packages in Splunk Universal Forwarder versions 10.4.1, 10.2.5, 10.0.8, 9.4.13, and higher.

PackageRemediationCVESeverity
OpenSSL1Upgraded OpenSSL to version 1.0.2zpMultipleLow

1 Upgraded OpenSSL to version 1.0.2zp to remedy CVE-2026-28388, CVE-2026-28389, and CVE-2026-28390 at $SPLUNK_HOME/lib/libcrypto.so.1.0.0 and $SPLUNK_HOME/lib/libssl.so.1.0.0.

Solution

Upgrade Splunk Universal Forwarder to versions 10.4.1, 10.2.5, 10.0.8, 9.4.13, or higher.

Product Status

ProductBase VersionAffected VersionFix Version
Splunk Universal Forwarder10.4Below 10.4.110.4.1
Splunk Universal Forwarder10.210.2.0 to 10.2.410.2.5
Splunk Universal Forwarder10.010.0.0 to 10.0.710.0.8
Splunk Universal Forwarder9.49.4.0 to 9.4.129.4.13

Severity

For the CVEs in this list, Splunk adopted the vendor’s severity rating or the National Vulnerability Database (NVD) common vulnerability scoring system (CVSS) rating, as available.