Splunk Enterprise Security (ES) Third-Party Package Updates - January 2024
Advisory ID: SVD-2024-0103
CVE ID: Multiple
Published: 2024-01-09
Last Update: 2024-01-11
Description
Splunk remedied common vulnerabilities and exposures (CVEs) in Third Party Packages in Splunk Enterprise Security (ES) versions 7.1.2, 7.2.0 and higher, including the following:
| Package | Remediation | CVE | Severity |
|---|---|---|---|
| babel/traverse | Upgraded to 7.23.2 | CVE-2023-45133 | High |
| handsontable | Upgraded to 13.1.0 | CVE-2021-23446 | High |
| semver | Upgraded to 6.3.1 | CVE-2022-25883 | High |
| loader-utils | Upgraded to 1.4.2 | CVE-2022-37599 | High |
| loader-utils | Upgraded to 1.4.2 | CVE-2022-37603 | High |
| loader-utils | Upgraded to 1.4.2 | CVE-2022-37601 | Critical |
| json5 | Upgraded to 1.0.2 | CVE-2022-46175 | High |
Solution
Upgrade Splunk Enterprise Security (ES) to version 7.1.2, 7.2.0, 7.3.0 or higher.
Product Status
| Product | Base Version | Affected Version | Fix Version |
|---|---|---|---|
| Splunk Enterprise Security (ES) | 7.3 | - | 7.3.0 |
| Splunk Enterprise Security (ES) | 7.2 | - | 7.2.0 |
| Splunk Enterprise Security (ES) | 7.1 | Below 7.1.2 | 7.1.2 |
Severity
For the CVEs in this list, Splunk adopted the national vulnerability database (NVD) common vulnerability scoring system (CVSS) rating to align with industry standards.
Changelog
- 2024-01-11: Updated affected version for 7.1 from “Below 7.1.1” to “Below 7.1.2”