Splunk® Enterprise Security

Release Notes

Acrobat logo Download manual as PDF


Acrobat logo Download topic as PDF

Known issues for Splunk Enterprise Security

Splunk Enterprise Security 7.0.2 was released on October 5, 2022. For more information on release dates for the major versions of Splunk Enterprise Security, see Software Support Policy page.

This release includes the following known issues.


Date filed Issue number Description
2022-10-03 SOLNESS-32865 Upgrade "All Investigations" list in Investigation bar uses React instead of the "swc bootstrap" dropdown.
2022-09-23 SOLNESS-32806, SOLNESS-32822 Visual differences seen in the UI while performing Splunk 9.0.2208.2 sanity testing.
2022-09-14 SOLNESS-32647 Saved searches created in Content Management with private settings are not displayed on the Content Management page in Splunk Enterprise Security.
2022-09-14 SOLNESS-32650 Clicking on a risk factor in the Content Management always displays the first risk factor.
2022-09-14 SOLNESS-32646 Saved searches in Content Management can be enabled or disabled with a bulk update but not using the Actions column.
2022-06-24 SOLNESS-31447 Incident Review workflow actions opens in a new window for an open search in the current window where the setting for type is "search in event_menu".
2022-01-31 SOLNESS-29825 Short IDs created before upgrading to ES 7.0 do not show up in Incident Review even though the Short ID is in the notable_xref_lookup.

Workaround:
When you upgrade Splunk Enterprise Security to versions 7.0.0 or higher, the short IDs for notables that were created prior to the upgrade are not displayed on the Incident Review page. However, you can recreate all the short IDs that were available prior to the upgrade.
Last modified on 02 November, 2022
PREVIOUS
Fixed issues for Splunk Enterprise Security
  NEXT
How to find answers and get help with Splunk Enterprise Security

This documentation applies to the following versions of Splunk® Enterprise Security: 7.0.2


Was this documentation topic helpful?


You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters