Splunk® Enterprise Security

Release Notes

Acrobat logo Download manual as PDF

Acrobat logo Download topic as PDF

Known issues for Splunk Enterprise Security

Splunk Enterprise Security 7.0.1 was released on March 23, 2022. For more information on release dates for the major versions of Splunk Enterprise Security, see Software Support Policy page.

This release includes no known issues.

Date filed Issue number Description
2022-08-17 SOLNESS-32194 Notable Event Suppression page filtering/searching issues
2022-08-12 SOLNESS-32134 ES Threat Activity Detected correlation search is incorrect
2022-08-08 SOLNESS-31995 Incident Review - custom filter are truncating to the max screen resolution without providing a scrolling bar and loosing the manage filter access

No workaround, the only solution is to slightly zoom out to access all filters and retrieve access to the manage filter button located at the bottom of the dropdown
2022-01-31 SOLNESS-29825 Short IDs created before upgrading to ES 7.0 do not show up in Incident Review even though the Short ID is in notable_xref_lookup.

When you upgrade the Splunk Enterprise Security app to versions 7.0.0 or higher, the short IDs for notables that were created prior to the upgrade are not displayed on the Incident Review page. As a workaround, you can recreate all the short IDs that were available prior to the upgrade.
Last modified on 20 September, 2022
Fixed issues for Splunk Enterprise Security
How to find answers and get help with Splunk Enterprise Security

This documentation applies to the following versions of Splunk® Enterprise Security: 7.0.1

Was this documentation topic helpful?

You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters