Splunk® Enterprise Security

Release Notes

The documentation for Splunk Enterprise Security versions 8.0 and higher have been rearchitected from previous versions, causing some links to have redirect errors. For documentation on version 8.0, see Splunk Enterprise Security documentation homepage.
This documentation does not apply to the most recent version of Splunk® Enterprise Security. For documentation on the most recent version, go to the latest release.

Fixed issues for Splunk Enterprise Security

Splunk Enterprise Security 7.0.2 was released on October 5, 2022. For more information on release dates for the major versions of Splunk Enterprise Security, see Software Support Policy page.

This release includes fixes for the following issues:


Date resolved Issue number Description
2023-01-11 SOLNESS-30749 Excessively large threat intelligence sources are not ingested by the Splunk Enterprise Security Threat Intelligence framework.
2023-01-11 SOLNESS-30750 Some portion of UI renders white in ES dark mode
2022-09-30 SOLNESS-29675 Error message "Cannot read properties of undefined (reading 'entry')".
2022-08-31 SOLNESS-32194 Filter and search issues on the Notable Event Suppression page.
2022-08-30 SOLNESS-32134 Correlation search for ES Threat Activity Detected is incorrect.
2022-08-22 SOLNESS-31995 The custom filter on the Incident Review page truncates to the maximum screen resolution without providing a scroll bar and access to Manage filter.
2022-08-09 SOLNESS-31613, SOLNESS-31949 Removing the "skip header lines" causes an exception.
2022-08-03 SOLNESS-31223 Slow performance for the Content Management and Incident Review dashboards
2022-07-28 SOLNESS-31435 The nslookup doesn't work on Splunk Enterprise Security running on Windows.
2022-05-25 SOLNESS-30798 A correlation search with double quotes in its name breaks source filtering logic on the Incident Review page.
2022-05-05 SOLNESS-30261 Improved page load performance in Splunk Enterprise Security Content Management page.
2022-03-30 SOLNESS-30041 Multiple owners are displayed on the Incident Review page when selecting Owner.
2022-03-22 SOLNESS-30133 The src or dest fields of Threat Activity events displayed as Unknown even when threat_match_fields is src or dest.
2022-03-03 SOLNESS-29833, SOLNESS-29851 Annotations do not display numerical values.
2022-03-01 SOLNESS-30127 Required admin role capabilities clarified for Splunk Enterprise Security.
Last modified on 11 January, 2023
Release notes for Splunk Enterprise Security   Known issues for Splunk Enterprise Security

This documentation applies to the following versions of Splunk® Enterprise Security: 7.0.2


Was this topic useful?







You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters