ManageEngine Pitstop | Community and Support forums

• Google fixes several high severity vulnerabilities in its Chrome 104.0.5112.79/80/81 Stable Channel update

  Hello everyone, Chrome Stable Channel has been updated to 104.0.5112.79/80/81 for Windows, and 104.0.5112.79 for Mac and Linux. This update comes with 27 security fixes. The details of the vulnerability fixed are mentioned below: CVE ID Vulnerability

• Questions about distribution servers on windows server

  Good afternoon, When installing a Vulnerability Manager Plus distribution server on a Windows server operating system, is it necessary to enable any feature or role for the server to work properly? I understand that since it is possible to install it

• Patch Tuesday July 2022 - Supported updates

  Hello everyone,  Here is the list of updates supported in this month's Patch Tuesday release.  New Security Bulletins : 2022-07 Security Only Quality Update for Windows Server 2008 Systems (KB5015870) (ESU) (CVE-2022-22047) 2022-07 Security Only Quality

• Google fixes a zero-day and other high severity vulnerabilities in its Chrome 103.0.5060.114 Stable Channel update

  Hello everyone, Chrome Stable Channel has been updated to 103.0.5060.114 for Windows, Mac, and Linux. This update comes with 4 security fixes. The details of the vulnerability fixed are mentioned below: CVE ID Vulnerability Severity CVE-2022-2294 Heap

• Google fixes a critical and several high severity vulnerabilities in its Chrome 103.0.5060.53 Stable Channel update

  Hello everyone, Chrome Stable Channel has been updated to 103.0.5060.53 for Windows, Mac, and Linux. This update comes with 14 security fixes. The details of the vulnerability fixed are mentioned below: CVE ID Vulnerability Severity CVE-2022-2156 Use

• Patch Tuesday June 2022 - Supported updates

  Hello everyone,  Here is the list of updates supported in this month's Patch Tuesday release.  New Security Bulletins : 2022-06 Security Only Quality Update for Windows Server 2008 Systems (KB5014743) (ESU) 2022-06 Security Only Quality Update for Windows

• Google fixes several high severity vulnerabilities in its Chrome 102.0.5005.115 Stable Channel update

  Hello everyone, Chrome Stable Channel has been updated to 102.0.5005.115 for Windows, Mac, and Linux. This update comes with 7 security fixes. The details of the vulnerability fixed are mentioned below: CVE ID Vulnerability Severity CVE-2022-2007 Use

• Introducing vulnerability management for Network Devices!

  Hi folks!  Vulnerability Manager Plus can now be used for managing vulnerabilities in network devices. Its features include: Discovering the network devices Scanning for firmware vulnerabilities Remediation and management of vulnerabilities Note: Vulnerability

• Introducing OAuth Authentication feature for Mail Server Settings

  Hello Everyone,          We've got news! You can finally configure Vulnerability Manager Plus Mail Server Settings by OAuth authentication. Upgrade now!          As you may already know, Microsoft and Google are deprecating basic authentication (using username and password)

• Mozilla fixes several high severity vulnerabilities in Firefox 101 and Firefox ESR 91.10

  Hey everyone,   Mozilla has released fixes for several high-severity vulnerabilities in Firefox 101 and Firefox ESR 91.10. The details of the vulnerabilities fixed can be found below: CVE ID Description Severity CVE-2022-21736 (Firefox and Firefox ESR

• [Zero-day] Microsoft Security Diagnostic Tool vulnerability causes RCE - Workaround released

  Hey everyone,   This forum post is to notify about a zero-day vulnerability that has been reported in Microsoft Security Diagnostic Tool [CVE-2022-30190]. Discovered by an independent cybersecurity researcher team nao_sec, the flaw has been dubbed as Follina.

• Google fixes several high severity vulnerabilities in its Chrome 102.0.5005.61/62/63 Stable Channel update

  Hello everyone, Chrome Stable Channel has been updated to 102.0.5005.61/62/63 for Windows, 102.0.5005.61 for Mac, and Linux. This update comes with 32 security fixes. The details of the vulnerability fixed are mentioned below: CVE ID Vulnerability Severity

• Patch Tuesday May 2022 - Supported updates

  Hello everyone,  Here is the list of updates supported in this month's Patch Tuesday release.  New Security Bulletins : 2022-05 Security Only Quality Update for Windows Server 2008 (KB5014006) (ESU) (CVE-2022-26925) 2022-05 Security Only Quality Update

• Mozilla fixes several high severity vulnerabilities in Firefox 100 and Firefox ESR 91.9

  Hey everyone,   Mozilla has released fixes for several high-severity vulnerabilities in Firefox 100 and Firefox ESR 91.9. The details of the vulnerabilities fixed can be found below: CVE ID   Description  Severity CVE-2022-29914 (Firefox and Firefox ESR)

• Google fixes several high severity vulnerabilities in its Chrome 101.0.4951.41 Stable Channel update

  Hello everyone, Chrome stable channel has been updated to 101.0.4951.41 for Windows, Mac, and Linux. This update comes with 30 security fixes. The details of the vulnerability fixed are mentioned below: CVE ID  Vulnerability  Severity CVE-2022-1477 Use

• Google fixes one Zero-day (CVE-2022-1364) in Chrome 100.0.4896.127 stable channel update

  Hello everyone,   Chrome stable channel has been updated to 100.0.4896.127 for Windows, macOS, and Linux. This update include 2 security fixes, of which one is a zero-day vulnerability tracked as CVE-2022-1364. As is norm, Google has stated that it is

• Patch Tuesday April 2022 - Supported updates

  [EDIT] Office updates, Third party updates, and Mac updates, added Below is the list of Patch Tuesday security updates, supported this month New Security Bulletins : 2022-04 Servicing Stack Update for Windows 10 Version 1507 (KB5013269) 2022-04 Servicing

• Google fixes several high severity vulnerabilities in its Chrome 100.0.4896.88 Stable Channel update

  Hello everyone, Chrome stable channel has been updated to 100.0.4896.88 for Windows, Mac, and Linux. This update comes with 11 security fixes. The details of the vulnerability fixed are mentioned below: CVE ID Vulnerability Severity CVE-2022-1305 Use

• Mozilla fixes several high severity vulnerabilities in Firefox 99 and Firefox ESR 91.8

  Hey everyone,  Mozilla has released fixes for several high-severity vulnerabilities in Firefox 99 and Firefox ESR 91.8. The details of the vulnerabilities fixed can be found below: CVE ID Description  Severity CVE-2022-1097 (Firefox and Firefox ESR) Use-after-free

• Google fixes a high severity vulnerability in its Chrome 100.0.4896.75 Stable Channel update

  Hello everyone, Chrome stable channel has been updated to 100.0.4896.75 for Windows, Mac, and Linux. This update comes with 1 security fix. The details of the vulnerability fixed are mentioned below: CVE ID Vulnerabilitiy Severity CVE-2022-1232 Type Confusion

• Forced MFA locked me out of the user, how to fix?

  I have updated my Vulnerability Manager Setup and it notified me that MFA will become mandatory.  SMTP Send wasn't used before so I díd not worry about if it is setup correctly.  The version is the one from 18.01.2022, I cannot show the version number

• Spring4Shell vulnerability (CVE-2022-22965) - Vulnerability Detection using ManageEngine Vulnerability Manager Plus

  *This forum post will be updated periodically based on the data updated by Spring.   The recently identified Spring4Shell vulnerability (CVE-2022-22965) is classified as a zero-day vulnerability. Present in the Spring Framework, this vulnerability can

• Spring4Shell RCE vulnerability [CVE-2022-22965] - All you need to know

  About the vulnerability: Tracked by CVE-2022-22965, the Spring4Shell is a zero-day vulnerability arising in the Spring Core Framework. CVE ID Description  Impact CVE-2022-22965 Remote Code Execution Zero-day * The CVE-2022-22965 has been published. ** 

• Google releases fixes for several high severity vulnerabilities in its Chrome 100.0.4896.60 Stable Channel update

  Hello everyone, Chrome Stable Channel has been updated to 100.0.4896.60 for Windows, Mac, and Linux. This update comes with 28 security fixes. The details of the vulnerabilities fixed are as follows: CVE ID Description  Severity CVE-2022-1125 Use after

• Windows 11 Upgrade patches listed under 'Missing Patches/Installed Patches/Applicable Patches' [If 'Optional Updates' in Patch DB Settings is enabled]

  Hey everyone,  This forum post is to announce that from 28.03.2022, if you have enabled Optional Updates in Patch DB Settings, the Windows 11 Upgrade patches will be found listed under Missing Patches / Installed Patches / Applicable Patches view. If

• [Changes reverted] Windows 11 Upgrade patches will no longer be listed under 'Missing Patches / Installed Patches / Applicable Patches' [If 'Optional Updates' in Patch DB Settings is enabled]

  Hello everyone, This forum post is to let you know that we have reverted the changes made earlier regarding the listing of Windows 11 Upgrade patches under Missing Patches / Installed Patches / Applicable Patches [If Optional Updates in Patch DB Settings

• Google Chrome fixes one actively exploited zero-day CVE-2022-1096 in its stable channel 99.0.4844.84 update

  Hello everyone,   Chrome stable channel has been updated to 99.0.4844.84 for Windows, macOS, and Linux. This update comes with fixes for 1 actively exploited zero-day vulnerability tracked as CVE-2022-1096. This is a Type confusion vulnerability V8, which

• Google releases several security fixes in its Chrome 99.0.4844.74 Stable Channel update

  Hello everyone, Chrome stable channel has been updated to 99.0.4844.74 for Windows, Mac, and Linux. This update comes with 11 security fixes. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability  Severity CVE-2022-0971 Use after

• How to fix the Windows AppX Installer Spoofing Vulnerability with Vulnerability Manager Plus*

  *- This also applies to the Vulnerability Management add-on to Desktop Central.       The Windows AppX Installer Spoofing Vulnerability (CVE-2021-43890) was released on December 14, 2021. The mitigation and workarounds for this vulnerability can be found

• Mozilla fixes several high severity vulnerabilities in Firefox 98, Firefox ESR 91.7 and Thunderbird 91.7

  Hey everyone,   Mozilla has released fixes for several high-severity vulnerabilities in Firefox 98, Firefox ESR 91.7 and Thunderbird 91.7. The details of the vulnerabilities fixed can be found below: CVE ID  Description  Impact CVE-2022-26383 (Firefox,

• Patch Tuesday March 2022 - Supported updates

  Hello everyone,  There was a delay in supporting the March 2022 Patch Tuesday updates due to an unexpected glitch in our internal servers. We apologize for the inconvenience and will ensure that hiccups like this don't affect your experience in the future.

• Mozilla fixes zero-day vulnerabilities in Firefox 97.0.2, Firefox ESR 91.6.1 and Thunderbird 91.6.2

  Hey everyone,   Mozilla has released security updates to fix two zero-day vulnerabilities in Firefox 97.0.2, Firefox ESR 91.6.1 and Thunderbird 91.6.2.   Tracked as CVE-2022-26485 and CVE-2022-26486, Mozilla said, "We have had reports of attacks in the

• Google releases several security fixes in its Chrome 99.0.4844.51 Stable Channel update.

  Hello everyone, Chrome stable channel has been updated to 99.0.4844.51 for Windows, Mac, and Linux. This update comes with 28 security fixes. The details of the vulnerabilities fixed are as follows: CVE ID Vulnerability  Severity CVE-2022-0789 Heap buffer

• Microsoft fixes a zero-day threat and several high-severity vulnerabilities in Edge (Chromium-based) 98.0.1108.55 (Stable Channel update).

  Hey everyone,   Microsoft Edge (Chromium-based) has been updated to 98.0.1108.55 for Windows, Mac, and Linux. This Stable channel update fixes a zero-day threat (tracked as CVE-2022-0609) as well as a number of high-severity vulnerabilities.   Here are

• Google fixes a zero-day threat and several high-severity vulnerabilities in Chrome 98.0.4758.102 Stable channel update.

  Hello everyone,   Chrome stable channel has been updated to 98.0.4758.102 for Windows, Mac, and Linux. This update fixes a zero-day threat (tracked as CVE-2022-0609) as well as a number of high-severity vulnerabilities.   In a security advisory released

• Deploying macOS 12 Monterey security updates on Silicon machines using Vulnerability Manager Plus

  Hello everyone, Apple has introduced new security policies for Silicon machines that requires end-user authentication for installing security updates. You can refer to this link from the vendor for more details on the same. macOS 12 Monterey security

• Microsoft fixes a security vulnerability in Edge (Chromium-based) 98.0.1108.50 (Stable Channel update).

  Hey everyone,   Microsoft Edge (Chromium-based) has been updated to 98.0.1108.50 for Windows, Mac, and Linux. This Stable Channel update includes 1 security fix, which is a Microsoft Edge-specific update.   Here are the details: CVE ID Impact Severity

• Patch Tuesday February 2022 - Supported updates

  Hello everyone,  Below is the list of Patch Tuesday updates, supported this month New Security Bulletins : 2022-02 Security Only Quality Update for Windows Server 2008 (KB5010403) (ESU) (CVE-2022-21989) 2022-02 Security Only Quality Update for Windows

• Extended Security Updates (ESU) for Windows 7 and Windows Server 2008 - Year 3 support

  Hello everyone,Microsoft has announced it's final leg of the Extended Security Updates (ESUs) support for Windows 7 and Windows Server 2008.  Versions  ESU Support remaining  Start and End date Windows 7 SP1 and Windows 7 Professional for Embedded Systems

• Mozilla fixes high severity security vulnerabilities in Firefox 97, and Firefox ESR 91.6.

  Hey everyone, Mozilla has fixed several high severity security vulnerabilities in Firefox 97, and Firefox ESR 91.6. The details of the vulnerabilities fixed are as follows: Platform CVE ID Vulnerability Impact Firefox 97 CVE-2022-22753 Privilege Escalation

• Next Page

New to ADSelfService Plus?

Start your free trial

Resources

• Guides
• What's new
• How-tos
• Latest build
• Roadmap
• Workshops
• Contact support
• Live chat
  

• Announcements

• Termination of patch database sync for versions lesser than 10.1.2134.1 in Vulnerability Manager Plus

  Hello everyone, This announcement is to notify you that, we are terminating the patch database sync for Vulnerability Manager Plus versions lesser than 10.1.2134.1 by the end of May 31, 2023. Versions below 10.1.2134.1 will no longer receive patch updates

• Patch Tuesday March 2023- Supported Updates

  Hello everyone, Here is the list of updates supported in this month's Patch Tuesday release. New Security Bulletins : 2023-03 Security Only Quality Update for Windows Server 2008 Systems (KB5023754) (ESU) 2023-03 Security Only Quality Update for Windows

• cURL vulnerabilities detected in Windows 10 and 11 machines

  Hello everyone! This forum post is to notify about Windows vulnerabilities in cURL.exe that has been detected by Vulnerability Manager Plus in your enterprise network. cURL.exe is present by default in your Windows10 and 11 machines and cURL 7.83.1 version,

• Patch Tuesday February 2023- Supported Updates

  Hello everyone, Here is the list of updates supported in this month's Patch Tuesday release. New Security Bulletins : KB5022783, 2023-02 Security Only Update for .NET Framework 4.6.2 for Windows Server 2008 SP2 (KB5022526) (ESU) KB5022783, 2023-02 Security

• Google fixes several high severity vulnerabilities in its Chrome 110.0.5481.77/78 Stable Channel update

  Hey everyone, Chrome Stable Channel has been updated to 110.0.5481.77/78 for Windows and 110.0.5481.77 for Mac and Linux. This update comes with 15 security fixes. The details of the vulnerabilities fixed are mentioned below: CVE ID Vulnerability Severity

• Most Discussed Topics

• Patch Requirement Visibility on Client Side

  Hi folks I accept this may be simple (or not!) but as an admin for the Vulnerability Manager Pro system, I often get asked by people how they can see what patches they need. I would have expected a small graphic over the system tray icon - like an exclamation