Splunk Enterprise
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

What would be the proper upgrade path for this Tenable vulnerability coming from 9.3.3?

danielbb
Motivator
Sunday

We have a Splunk environment of over 20+ servers, and they are all consistently running Splunk version 9.3.3 Core & UF. Recently, this Tenable vulnerability emerged for a few of them.

The solution on the linked vulnerability page claims that we need to upgrade to versions 10.0.1, 9.4.5, 9.3.7, 9.2.9, or higher.

So we wonder, what would be the recommended/proper upgrade path we should take, considering the fact that we don't want to fall behind version-wise, because Splunk has already reached the 10.x versions, while we are still on the 9.x?

Labels (2)
Labels
Tags (2)
0 Karma
Reply

PrewinThomas
Motivator
Sunday

@danielbb 

As @livehybrid  mentioned, The fastest, safest, and least disruptive way to do this is to upgrade from 9.3.3 to 9.4.5.
Then you can plan the jump to the 10.x. This is a major version upgrade and requires more planning.
Test Upgrade to 10.x on (dev/staging servers) and validate Splunk apps, add‑ons, and custom scripts against Splunk 10 changes and then plan to upgrade UF's also.

Regards,
Prewin
🌟If this answer helped you, please consider marking it as the solution or giving a Karma. Thanks!

Reply

livehybrid
SplunkTrust
SplunkTrust
Sunday

Hi @danielbb 

You can upgrade from 9.3.3 directly to 10.0.1, the docs for this version arent super clear (https://help.splunk.com/en/splunk-enterprise/get-started/install-and-upgrade/10.0/upgrade-or-migrate...) but they do confirm that you can go from 9.3.x to the latest 10.0.x version.

Alternatively you could upgrade the the latest 9.3.x or 9.4.x versions if you arent wanting to move to 10.0.x

🌟 Did this answer help you? If so, please consider:

  • Adding karma to show it was useful
  • Marking it as the solution if it resolved your issue
  • Commenting if you need any clarification

Your feedback encourages the volunteers in this community to continue contributing

Reply
Get Updates on the Splunk Community!

Unlock Faster Time-to-Value on Edge and Ingest Processor with New SPL2 Pipeline ...

Hello Splunk Community,   We're thrilled to share an exciting update that will help you manage your data more ...

Splunk MCP & Agentic AI: Machine Data Without Limits

Discover how the Splunk Model Context Protocol (MCP) Server can revolutionize the way your organization uses ...

Application management with Targeted Application Install for Victoria Experience

Experience a new era of flexibility in managing your Splunk Cloud Platform apps! With Targeted Application ...