Windows KB5009543 and KB5009566 updates break L2TP VPN connections
Hello everyone, January Patch Tuesday updates are out and Windows administrators have been seeing issues with the Windows 10 KB5009543 and Windows 11 KB5009566 cumulative updates. These updates seemingly break L2TP VPN connections. The issue: Users who
January 2022 Patch Tuesday - Supported updates
Hello everyone, Here's the list of January 2022 Patch Tuesday updates supported by ManageEngine New Security Bulletins : Security Update For Exchange Server 2013 CU23 (KB5008631) (CVE-2022-21846) (CVE-2022-21855) (CVE-2022-21969) Security Update For
January 2022 Patch Tuesday - Supported updates
Hello everyone, Here's the list of January 2022 Patch Tuesday updates supported by ManageEngine New Security Bulletins : Security Update For Exchange Server 2013 CU23 (KB5008631) (CVE-2022-21846) (CVE-2022-21855) (CVE-2022-21969) Security Update For
January 2022 Patch Tuesday - Supported updates
Hello everyone, Here's the list of January 2022 Patch Tuesday updates supported by ManageEngine New Security Bulletins : Security Update For Exchange Server 2013 CU23 (KB5008631) (CVE-2022-21846) (CVE-2022-21855) (CVE-2022-21969) Security Update For
Log4j vulnerability - Denial of Service (CVE-2021-45105)
Hello everyone, Another vulnerability has been detected in the fixes rolled out for Apache Log4j (Logging Library for Java. This vulnerability is tracked as CVE-2021-45105 and Apache Log4j2 versions 2.0-alpha1 through 2.16.0 are vulnerable. This vulnerability
Upgrade to the latest Secure Gateway Server
Hello everyone, We have updated Patch Manager Plus' security component, Secure Gateway Server to version 90093, with a few issue fixes and enhancements. Please Download the latest Secure Gateway Server here. You can check the list of updates for
Please update to the latest build of Secure Gateway Server!
Hello everyone, We have updated Desktop Central's Secure Gateway Server with a few bug fixes. Please Download the latest Secure Gateway Server here. You can find out more about the bug fixes released in the build update (90093) on this readme page.
[Free e-book] Six strategies to eliminate costly inefficiencies in your IT service processes
An organization's IT department is its powerhouse. However, IT can still be affected by service outages, service performance issues and inefficiencies. Discover how advanced analytics for IT service management can provide visibility into IT services,
[Announcement]: Free OpManager training series starting from January 18, 2022
Greetings from ManageEngine! Our free, four-part webinar series will help you quickly detect, diagnose, and avert network outages proactively. Register to enroll in all four parts scheduled for January 18 and 25 and February 1 and 8 in two different
PAM360 new build 5304
Hi, PAM360 5304 has been released and is now available for download. This is a minor release that includes an important feature and a couple of enhancements. Please see our Release Notes to learn in detail about the same. (build 5304) How to Upgrade
Google releases several fixes and improvements in its Chrome 97.0.4692.71 stable channel update
Hello everyone, Chrome stable channel has been updated to 97.0.4692.71 for Windows, macOS, and Linux. This update comes with 37 security fixes and various other improvements. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability
Google releases several fixes and improvements in its Chrome 97.0.4692.71 stable channel update
Hello everyone, Chrome stable channel has been updated to 97.0.4692.71 for Windows, macOS, and Linux. This update comes with 37 security fixes and various other improvements. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability
Google releases several fixes and improvements in its Chrome 97.0.4692.71 stable channel update
Hello everyone, Chrome stable channel has been updated to 97.0.4692.71 for Windows, macOS, and Linux. This update comes with 37 security fixes and various other improvements. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability
[QUIZ- 8] : New features released in version 11.3 ( Part -2)
We are excited to bring our quiz activity for the recently held virtual meetup session on New features released in version 11.3 ( Part -2) . You can check out the session's recording and take the quiz to brush up on the topics covered. Here is the activity
Upcoming API changes in ServiceDesk Plus MSP - 10.6 release
Dear Users From ServiceDesk Plus MSP version 10.6, support for Requester and Technician related APIs (v2 API) will be discontinued. We recommend to update your existing user API to the latest version (v3 API) for a hassle-free access to the application.
Password Manager Pro new build 12003
Hi, Password Manager Pro 12003 has been released and is now available for download. This is a minor release that includes an enhancement and a set of bug fixes. For more details, please see our Release Notes of this upgrade pack (build 12003). How to
Security Advisory - M365 Security Plus versions 4420 and below
Hello everybody! We have fixed an authentication bypass leading to arbitrary file-upload remote code execution vulnerability (CVE-2021-42099) reported by moon. This article provides more information on the issue and how to resolve it. What is the
Upgrade to the latest Secure Gateway Server
Greetings, We have updated Desktop Central's security component, Secure Gateway Server with a few issue fixes and enhancements. Please Download the latest Secure Gateway Server here. You can check the list of updates for the build update in this
Upcoming Release: Secondary Email and Technician Additional Field Enhancements
Dear Users, We are ready to unwrap the upcoming enhancements in CSV & Provisioning tool user import. Below are the details, - OrgAdmins/SDAdmins can add a secondary email to user accounts via CSV import of users or using provisioning tools. However,
Planned US Data center Maintenance on Dec 25th, 2021 and 1st January, 2022
Good day & Merry Christmas! There will be a planned maintenance for our US data center as part of our annual infrastructure maintenance on December 25th, 2021 and January 1st, 2022 for about 3 hours from 6:30 PM to 09:30 PM PST. We don’t expect any major
Update on the recent Apache Log4j2 vulnerabilities - Impact on ManageEngine Analytics Plus
Last Updated on : 22nd Dec 2021 09:00 GMT Three high severity vulnerabilities, (CVE- 2021-44228, CVE-2021-45105 and CVE-2021-45046), impacting multiple versions of Apache Log4j utility, was disclosed publicly on December 9, 2021. We have found no evidence
Behavior Change in Custom Trigger Scripts
Dear user, The current_stage and approved_stage keys in custom trigger input JSON are renamed as current_level and approved_level respectively. Users are advised to update their custom trigger scripts accordingly as the older keys will be deprecated
Log4j vulnerability - Denial of Service (CVE-2021-45105)
Hello everyone, Another vulnerability has been detected in the fixes rolled out for Apache Log4j (Logging Library for Java. This vulnerability is tracked as CVE-2021-45105 and Apache Log4j2 versions 2.0-alpha1 through 2.16.0 are vulnerable. This vulnerability
Vulnerability new update - ManageEngine Data Security Plus
This post is a follow up for two high severity vulnerabilities (CVE- 2021-44228/CVE-2021-45046) reported in Apache and the recommended countermeasure to mitigate them (Replacing the old jar files with log4j files of v2.16). It is observed that there is
RecoveryManager Plus rolls out fix for Apache Log4j vulnerabilities.
Issue fixed The Log4j library used in the product has been updated to 2.16.0 to prevent the unauthenticated RCE (CVE-2021-44228) and DoS (CVE-2021-45046) vulnerabilities. We strongly recommend all our customers to immediately update RecoveryManager Plus
[Security Advisory] ServiceDesk Plus MSP is not affected by CVE-2021-44228
Dear Users, We would like to inform you that ServiceDesk Plus MSP is not affected by the recent RCE vulnerability (CVE-2021-44228) reported in the Log4j framework. What is CVE-2021-44228 vulnerability? According to the Apache foundation, the reported
Log4j vulnerability - Apache Log4j Vulnerability (CVE-2021-45046)
Hello everyone, It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map (MDC) to craft malicious input data using
Log4j vulnerability - Apache Log4j Vulnerability (CVE-2021-45046)
Hello everyone, It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map (MDC) to craft malicious input data using
Log4j vulnerability - Handling for the DMZ tool
Hello everyone, Note: This is exclusively for customers using the DMZ tool for closed network patching. The DMZ tool alone has a dependency file that uses Log4j library and hence is vulnerable. The rest of Desktop Central / Patch Manager Plus / Vulnerability
Log4j vulnerability - Handling for the DMZ tool
Hello everyone, Note: This is exclusively for customers using the DMZ tool for closed network patching. The DMZ tool alone has a dependency file that uses Log4j library and hence is vulnerable. The rest of Desktop Central / Patch Manager Plus / Vulnerability
Log4j vulnerability - Handling for the DMZ tool
Hello everyone, Note: This is exclusively for customers using the DMZ tool for closed network patching. The DMZ tool alone has a dependency file that uses Log4j library and hence is vulnerable. The rest of Desktop Central / Patch Manager Plus / Vulnerability
Microsoft fixes several high-severity security vulnerabilities in Edge for Business (chromium) 96.0.1054.57 update
Hello everyone, Microsoft Edge for Business (chromium) has been updated to 96.0.1054.57 for Windows, macOS, and Linux. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability Severity CVE-2021-4098 Insufficient data validation
Microsoft fixes several high-severity security vulnerabilities in Edge for Business (chromium) 96.0.1054.57 update
Hello everyone, Microsoft Edge for Business (chromium) has been updated to 96.0.1054.57 for Windows, macOS, and Linux. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability Severity CVE-2021-4098 Insufficient data validation
Microsoft fixes several high-severity security vulnerabilities in Edge for Business (chromium) 96.0.1054.57 update
Hello everyone, Microsoft Edge for Business (chromium) has been updated to 96.0.1054.57 for Windows, macOS, and Linux. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability Severity CVE-2021-4098 Insufficient data validation
Google fixes several high-severity security vulnerabilities in Chrome 96.0.4664.110 stable channel update
Hello everyone, Chrome stable channel has been updated to 96.0.4664.110 for Windows, macOS, and Linux. This update comes with fixes for 5 security vulnerabilities of which CVE-2021-4102 is exploited in the wild. The details of the vulnerabilities fixed
Google fixes several high-severity security vulnerabilities in Chrome 96.0.4664.110 stable channel update
Hello everyone, Chrome stable channel has been updated to 96.0.4664.110 for Windows, macOS, and Linux. This update comes with fixes for 5 security vulnerabilities of which CVE-2021-4102 is exploited in the wild. The details of the vulnerabilities fixed
Google fixes several high-severity security vulnerabilities in Chrome 96.0.4664.110 stable channel update
Hello everyone, Chrome stable channel has been updated to 96.0.4664.110 for Windows, macOS, and Linux. This update comes with fixes for 5 security vulnerabilities of which CVE-2021-4102 is exploited in the wild. The details of the vulnerabilities fixed
Apache Log4Shell vulnerability (CVE-2021-44228)
The identified Log4Shell vulnerability (CVE-2021-44228) is classified as a Zero-Day Vulnerability. The name Log4Shell refers to the fact that this bug is present in a popular Java logging library called Log4j, which when exploited, can allow attackers
Apache Log4Shell vulnerability (CVE-2021-44228)
The identified Log4Shell vulnerability (CVE-2021-44228) is classified as a Zero-Day Vulnerability. The name Log4Shell refers to the fact that this bug is present in a popular Java logging library called Log4j, which when exploited, can allow attackers
Patch Tuesday December 2021 - Updates
Hello everyone, Here is the list of supported December 2021 Patch Tuesday updates New Security Bulletins : 2021-12 Security Only Quality Update for Windows Server 2008 (KB5008271) (ESU) (CVE-2021-41333) (CVE-2021-43883) (CVE-2021-43893) 2021-12 Security
Next Page