Insights for Network 4.04

Insights for Network 4.04

Insights for Network 4.04 is a maintenance release addressing two recent Splunk CVEs.

The CVEs addressed in this release are:

CVE-2024-23675 and CVE-2024-23678. The highest severity rating for these CVEs is 7.5 – High

The internal architecture of Insights for Network provides partial mitigation for CVE-2024-23675, reducing its severity to a Low. CVE-2024-23678 is exploitable by attackers with permission to write a file to a disk on the Splunk server.

Absolute recommends that all on-premises customers upgrade to Insights for Network 4.04 for maximum protection. Insights for Network SaaS customers will be updated automatically during an upcoming maintenance window.

For more information regarding Insights for Network 4.04, or for general security questions, email [email protected] or [email protected]