The documentation for Splunk Enterprise Security versions 8.0 and higher have been rearchitected from previous versions, causing some links to have redirect errors. For documentation on version 8.0, see Splunk Enterprise Security 8.x documentation.
This documentation does not apply to the most recent version of Splunk® Enterprise Security.
For documentation on the most recent version, go to the latest release.
Fixed issues for Splunk Enterprise Security
Splunk Enterprise Security 7.3.3 was released on February 12, 2025. For more information on release dates for the major versions of Splunk Enterprise Security, see Software Support Policy page.
This release includes fixes for the following issues:
| Date resolved | Issue number | Description |
|---|---|---|
| 2025-01-30 | SOLNESS-48316, SOLNESS-48522 | Max_size Error for Threat Input Source : Feed Discarded Despite Adjusted Settings |
| 2025-01-28 | SOLNESS-47461 | ES Investigations Loading Slowly |
| 2025-01-13 | SOLNESS-47961 | In ES 7.3.x on Incident Review dashboard, while adding tags the field value associated with each value in the table is showing as undefined |
| 2025-01-13 | SOLNESS-48285, SOLNESS-47969 | Threat - Threat List Activity - Rule Search is missing Risk Message |
| 2025-01-09 | SOLNESS-47324, SOLNESS-40830 | Security Posture > Top Notable Events drill down not filtering on rule name |
| 2025-01-08 | SOLNESS-47298, SOLNESS-43346 | IR Timeline is not editing selected filters even though shows that only those will be edited |
| 2024-12-23 | SOLNESS-47313, SOLNESS-43069, SOLNESS-49305 | Incident Review page breaks after Splunk Core upgrade to Python 3.9 module 'time' has no attribute |
| 2024-12-19 | SOLNESS-47955 | STIX2 feed download issue with ParserException errors |
| 2024-12-18 | SOLNESS-47326, SOLNESS-45320 | Workflow actions are not able to be used correctly from within the incident review dashboard with multi value fields |
| 2024-12-13 | SOLNESS-48049, SOLNESS-45992 | Threat intelligence feed facing download issues with POST configuration errors |
| 2024-12-13 | SOLNESS-47293, SOLNESS-44220, SOLNESS-48006 | Correlation searches "Threat Activity - Systems Impacted By Multiple Threats" and "Threat Activity - Threats Impacting Multiple Systems" were impacted since modifications to threat match searches updated a field. |
| 2024-12-12 | SOLNESS-47900, SOLNESS-36603 | Data Model definition for Identity_Management leads to a bug where DMA summary can't be rebuild |
| 2024-12-12 | SOLNESS-47332, SOLNESS-43404 | 3460846 - New lines and special characters no longer appearing correctly in notable event Next Steps |
| 2024-12-12 | SOLNESS-45369, SOLNESS-47317 | Error: Add a disposition other than "Undetermined" to update/close the notable event |
| 2024-12-11 | SOLNESS-47314, SOLNESS-46276 | Create Notables page only displays error: Cannot read properties of undefined (reading 'value') |
Last modified on 11 February, 2025
| Release notes for Splunk Enterprise Security | Known issues for Splunk Enterprise Security |
This documentation applies to the following versions of Splunk® Enterprise Security: 7.3.3
Download manual
Feedback submitted, thanks!