Monthly Release Notes - August 2024

Jump to:

 

Core Security


Core Impact

Version: 21.6

August 12, 2024

New Features
  • NTLM Connections Store. Leverage relayed connections at will to trigger attack modules based in connections' properties.
  • New entities' Quick Information panel.
Enhancements
  • Allow more customization when setting Agent Connection parameters in the Attack & Penetration wizard.
  • Standardized and aligned services detection in Information Gathering phase allowing a better integration with exploits when triggerin Attack & Penetration.
  • Revamped exploits module output showing a results table with information on each step done in the module execution.
  • Active Directory Reconnaissance improvements.
  • Added module to request Kerberos TGT from certificate.
  • Web Apps Fuzzer addition to discover hidden directories and pages in web servers.
  • Redesign reports better showing summarized information.
  • Enhanced Phishing URLs generation to remove easily detectable hardcoded values.
  • Avoid GUI process elevation requirement.
  • Dependencies Update: Nmap, zlib, boost, XtremeToolkitPro, Impacket.
Fixes
  • Tenable Security Center & Tenable Vulnerability Management integration.
  • Fixed an issue when editing workspaces' tags.

There are currently no updates.

Back to Top

 

Digital Guardian

Analytics & Reporting Cloud

Version: 4.11.0

August 17, 2024

New Features
    There are no new features or enhancements in this release.
Fixes
  • Resolved an issue in which the WIP certificate expiration notice was still being sent after the expiring certificate had been updated with a new certificate.

  • Resolved an issue in which the Install Time for some macOS Agents was missing.

  • Resolved an issue in which the Top Riskiest Users portion of the Insights report was not being generated properly.

  • Resolved a problem in which the UI landing page was incorrect if the user’s home workspace was not available.

  • Resolved an issue in which the content restriction option values for a role were not being applied correctly.

  • Resolved an issue in which a customer’s workspace was not displaying information for federated users properly.

Agent for Linux

Version: 8.2.0

August 13, 2024

New Features
  • Certification for Additional Kernels

    This table lists the additional certified Linux kernels for Red Hat Enterprise Linux (RHEL) and Ubuntu in this release. Refer to Agent for Linux User's Guide for details about the packages required to support the new kernel versions for the Agent. Refer to Agent_for_Linux_v7.4.x_and_later_RHEL_Certified_Environments and Agent_for_Linux_v7.4.x_and_later_Ubuntu_Certified_Environments for complete lists of supported RHEL and Ubuntu kernels.

Distribution

Version

Architecture

Kernel

RHEL 9.4 64-Bit kernel-5.14.0-427.26.1.el9_4
RHEL 9.4 64-Bit kernel-5.14.0-427.24.1.el9_4
RHEL 9.4 64-Bit kernel-5.14.0-427.22.1.el9_4
RHEL 9.2

64-Bit

kernel-5.14.0-284.73.1el9_2
RHEL 9.2 64-Bit kernel-5.14.0-284.71.1.el9_2
RHEL 9.2 64-Bit kernel-5.14.0-284.69.1.el9_2
RHEL 8.10 64-Bit kernel-4.18.0-553.8.1.el8_10
RHEL 8.8 64-Bit kernel-4.18.0-477.58.1.el8_8
Ubuntu 20.04 LTS

64-Bit

linux-image-5.4.0-187-generic
Ubuntu 20.04 LTS

64-Bit

linux-image-5.4.0-186-generic
 
Enhancements
Ending Support for RHEL 7.x and Ubuntu 18.04 LTS Kernels

Effective with the next Agent release, Fortra will no longer support installing and running Agent for Linux on computers running Red Hat Enterprise Linux (RHEL) 7.x and Ubuntu 18.04 LTS kernels.

Fixes

Resolved an issue in which, after installing the Agent, it stops responding and stops communicating with the DGMC.

Server

Version: 8.7.0

August 12, 2024

New Features
Microsoft Windows Server 2022 and SQL Server 2022 Support

With this release, you can run DG Server on Microsoft Windows Server 2022. And you can use SQL 2022 as well.

Added Policy Audit Report

To help you manage your policies, there is a new operational report in the DGMC—Policy Audit. It provides details about changes to policies, rules, and components such as lists, plus who and when the changes were made. You can also see the version information for policies and compare versions.

Adds logging for these changes to enable faster troubleshooting and auditing of policy changes:

  • Policy name and duration when imported

  • Rule parameter changes

  • Many more logging updates

For more information, refer to Policy Audit in the online help or “Policy Audit” in Digital Guardian Management Console Users Guide.

Enhancements
Optimized Policy Deployment and Import Processes

Enhanced policy management to make deployment run faster, more reliably and provide added feedback:

  • Allow you to deploy more than 50 policies at one time.

  • Prevent saving a rule that has an empty component list rule parameter. If you try to save a rule with an empty parameter, the DGMC reverts the parameter to the default value. This reduces the chances of unexpected rule operation .

  • Log rule parameter values that were changed from the DGMC rule parameters page.

  • No longer display a warning about policy deployment when you modify a policy while Queue Policies for Deployment when Modified is set to No. The policy is flagged for deployment.

Fixes
  • Resolved an issue where there was a delay before computers or users got policies assigned as intended after the Dynamic Group Sync job ran.

  • Resolved a problem where non-communicating Agents were not removed after the retention period passed, although the clean-up job was running correctly.

  • Resolved an issue where the DGMC was not pushing updated component lists to Agents properly causing errors on the Agents.

  • Resolved an issue where there was a delay before computers or users got policies assigned as intended after the Dynamic Group Sync job ran.

  • Resolved an issue that caused dynamic group sync jobs to fail with a deadlock condition.

  • Resolved an issue where process exports used a time and date format that was not the same as alert and event exports. Made analysis more difficult to review.

  • Resolved an issue in which customers were getting Unsupported Platform errors for policies on supported Agent platforms

  • Resolved an issue where clicking an assigned policy in a dynamic group (System > Dynamic Groups > Assigned Policies) returns an error that the request could not be completed.

  • Resolved an issue where the Agent failed to compile the ACI resource files because the case of an entity name did not match the case of the referenced custom dictionary entity.

  • Resolved an issue where LDAP sync jobs failed because DG database tables were not being cleaned up after an associated job failed and left the tables behind, causing the Server to run out of storage space.

  • Resolved an issue where some rule parameter values were not being saved correctly and were being incorrectly assigned to more than one parameter.

  • Resolved an issue where exporting policies from the DGMC failed because multiple prompt surveys were mapped to the same prompt.

  • Resolved an issue where the date selection dialog box on the Policy-Wide Exceptions pane moved around on the page and the page refreshed every time the customer tried to select an exception date.

  • Resolved an issue where the Create Deployment option for deploying packages was displayed only if the user role included full control permission for packages. Users without full control for packages could not deploy packages as intended.

  • Resolved an issue in which deadlocks, and errors while cleaning up the collection database, caused the Artifact Assembler job to run too long and timeout or fail.

  • Resolved an issue where a customers Single-Sign-On Logon process was failing to log into the DGMC.

  • Resolved an issue where the notification email job failed with a syntax error “Cannot perform '<' operation on System.DateTime and System.String.”

Back to Top

 

FileCatalyst


FileCatalyst Workflow

Version 5.1.7 - Build 139

August 22, 2024

Fixes
  • Security fixes: CVE-2024-6632

  • Security fixes: CVE-2024-6633

Back to Top

 

Fortra


Endpoint Manager

August 22, 2024
New Features
  • Added an alert on the assign endpoints dialog when the server encounters a problem and fails to save changes.

Enhancements
  • Added capability column to listed modules on Edit Group drawer.

Fixes
  • Edit Endpoint Overrides page now accurately reflects the state of capability inheritance and references inherited group by name if applicable.

Fortra platform

 
August 24, 2024
Enhancements
  • Enhanced create/edit role to support adding additional tenant ids to role. This attribute will indicate which lower-level account tenants users with the role are allowed to access.

Fixes
  • Sessions are now synced across tabs and windows. Logging out of one will log out of all tabs/windows.

  • Email addresses are not wrapped in the Assign Users dialog.

Back to Top

 

Globalscape


v8.2.1

Aug 26, 2024

New Features

ARM

  • Added support for Database maintenance

  • Added PGP error codes to descriptions

Connection Profiles

  • Added support for AWS IAM Roles

Context Variables

  • Added new context variable for PGP error codes: %EVENT.ACTION_FAILURE_REASON%

EFT Administration

  • Added support for paths longer than 255 characters

Web Admin Client (WAC)

  • Added support for Arabic language

WTC

  • Added support for Arabic language

Enhancements

Administration

  • Updated several third-party libraries

  • Removed EOL redistributable from the EFT installer

Connection Profiles

  • Updated the AWS Region list

OpenSSL

  • Updated FIPS OpenSSL library to 3.1.4

OpenSSH

  • Updated OpenSSH library to 9.5.0

WTC

  • Updated Angular to version 17

Fixes

Automate Workflow Module (AWM)

  • Fixed an issue where certain AML conversions from version 10 to 2024 would fail

  • Fixed an issue where workflows would fail with an unexpected Automate response when the task is pushed to a full queue

  • Fixed an issue where Automate would report an error with an invalid request format error

  • Fixed an issue where Automate would report an error with invalid map K,T key error

  • Fixed an issue where Automate would report an error for invalid instance ID

Connection Profile

  • Fixed an issue where connection profile credentials could be modified when used in EFT Event Rules

Context Variables

  • Fixed an issue where the context variable, %FS.FOLDER_NAME% was missing in the "File System Variables" list

  • Fixed an issue where %GetTaskName()% would not retrieve the correct TaskName

EFT Administration

  • Fixed an issue where SMTP authentication would change back to SMTP when another option was selected

  • Fixed an issue where the "From" email address was displayed incorrectly when set to Gmail OAuth

EFT Event Rules

  • Fixed an issue where "if action FAILED" could not be added under a Loop dataset condition

  • Fixed an issue where credential override for event rules was not working as expected

  • Fixed an issue where actions were not nesting under some conditions

  • Fixed an issue where events were not indenting under Loop action which could cause an Admin GUI crash

  • Fixed an issue where passing arguments to PowerShell scripts would no longer work as expected

  • Fixed an issue where files uploaded to AWS would have wrong .xml content type

FIPS

  • Updated our documentation to reflect EFT service restart when enabling FIPS mode for SSH

Logging

  • Fixed an issue where Ted6 log AP for log path would cause the Admin GUI to fail to launch the log

REST API

  • Fixed an issue where EFT Event Rules created via REST API PATCH/POST requests would fail to trigger

Remote Agent

  • NOTE: Upgrading from EFT 8.2.0 to EFT 8.2.1 with RAM configured will require manual upgrade on Remote Agents, this does not impact upgrades from EFT 8.1.x

Web Admin Client

  • Fixed an issue where the User Management screen would post an error when loading users

WTC

  • Fixed an issue where the WTC login page was still accessible after disabling HTTP/S

  • Fixed a security vulnerability with our WTC change password validation

Back to Top

 

Halcyon


Network Server Suite

Version 11.5

August 6, 2024

Enhancements
  • DM: The default values for applications listed in Device Manager have been updated.

  • EC: Enterprise Console administrators can now quickly toggle alert grouping on both open and closed alert panels from the popup menu.

  • NSS: The installer has been updated to use the correct version of the Microsoft Visual C++ Redistributable.

  • NSS: The Log Viewer has been enhanced to allow users to view multiple log files in the same view.

Fixes
  • EC: The new Alert Key column will be hidden by default when creating a new alert panel or layout within the Enterprise Console Client.

  • NSS: Upgrades and repairs will no longer require the user to re-enter the SQL password.

  • NSS: Upgrading the main 11.3 and 11.4 NSS/Enterprise Console installers is likely to cause the error "This installation cannot be run by directly launching the MSI package. You must run setup.exe". Please click OK to ignore the error and continue with the installer.

  • NSS: Fixed the issue with licenses being removed during an upgrade of NSS.

  • NSS: NSS Windows Agent upgrades, pushed from CCM, will no longer leave a rogue entry in Add or Remove Programs (ARP) for the version that was upgraded.

Back to Top

 

Outflank Security Tooling (OST)


Outflank

Version: 19 August 2024
BeaconBooster CS 4.10 Compatibility
  • Updated Beacon Booster's Sleep Masks for compatibility with the new version of Cobalt Strike.
  • Added address spoofing for Beacon Gate.

Back to Top

 

Powertech


BoKS Manager

Version 8.1 (version update)

August 22, 2024

Server s-8.1.0.11
New Features
  • Added Kerberos password support for LOGIN and XDM methods.
Fixes
  • The autoblockusers command was configured to output debug messages by default.
Version 8.1 (version update)

August 12, 2024

Client c-8.1.0.17
New Features
  • The “boksdiag list” command now shows all Replicas.
Fixes
  • boks-ssh/boks-sshd did not ignore sshd/public-userkey/location and similar settings when BoKS is inactive.
  • The “sudoedit” command could not find the editor.
  • BoKS activation prevented use of the “swrole” command.

Back to Top

 

Robot


Robot Alert

Version 6.04

August 16, 2024

Fixes
  • Fixed issue with update of Alert causing the Autostart flag to reset to off.

Back to Top

 

Titus


DCS SDK

Version 5.1 HF1

August 28, 2024

Enhancements
Fixes
  • DCS for DaR can now accept licenses generated from the new license generation tool.

DCS for Windows

Version 5.0

August 2, 2024

New Features
  • Added a Preview bar on the Classification Selector dialog so you can see a summary of your Classification selections. You can enable or disable this bar using Policy Manager or using registry keys if you are using the DCS Administration Console.

  • Added a Classification Information bar at the bottom of email messages and Microsoft documents and files so users can see a summary of selected Classifications and other schema field values (except for date and time). You can enable or disable this bar using Policy Manager or using registry keys if you are using the DCS Administration Console.

  • NOTE: The Classification Information bar is visible in DCS for Outlook and DCS for Office only.
  • Added support for Date fields in the Classification Selector dialog from a Policy Manager configuration

Enhancements
  • Updated the existing Set Document Server Properties action to allow the user to set managed metadata properties to a document saved in Microsoft SharePoint. This allows users to select values from a predefined term set or enter keywords that are not in the term set. This column type can help control how users add metadata to content and implement business taxonomies. To create a managed metadata column, users can either map it to an existing term set at the site level or the list or library level. See the Microsoft documentation for more information. See Fortra's Data Classification Suite for Windows Policy Authoring Guide for more information on the Set Document Server Properties action.

  • Enhanced the Filter control in the Classification Selector dialog to allow a user to easily find a value from a schema field when the field contains hundreds of values. The new Filter control now includes matching against description and tooltip text.

    NOTE: This is available if you generated your configuration using Policy Manager only.
  • Added support for Subject labeling for all Meeting and Meeting response items

  • Added support for Microsoft SQL Server 2022 and Microsoft SQL Server Express 2022 for the DCS Administration Console

  • Added shortcut keys to perform actions in the Favorites dialog

  • The Favorites dialog is now located under the Settings or Options icon in the Classification Selector dialog

Fixes
  • When applying a watermark to a document that contained several sections, the watermark image was duplicated for each section.

  • If the HTML definition for a header or footer contained a table with a border, the border was not updated correctly when the label was changed or removed.

  • Conditions that reference a built-in document property, that are assigned to a documents 'OnOpen' event, will no longer cause a 'Save Changes' prompt when the document is closed and no other changes are made to the document.

  • In Microsoft Word, a Task Pane Alert would fail to display when opening a document. This occurred in Microsoft Windows 10 and Microsoft 365 MSO environments.

  • Corrected the behavior of meeting and appointments so that the "New Message is started" event is processed as expected. A New item is any item which is in a state of composition.

  • When repeatedly replying to the same message thread, the metadata was not always persisted onto the reply.

  • When responding to meeting requests, the response item was submitted with the wrong classification if the user changed the classification of the response.

  • Duplicate copies of the same attachment are no longer generated when using the Classify Attachment feature from within a meeting request.

  • Portion marking now correctly applies the portion mark when there is no message body. The position of the cursor is important when applying a Portion Mark.

  • TCS for Windows 2022.0 and 2023.0 had sizing issues of One-Click buttons in the Classification Selector dialog. The buttons are now sized to the content in DCS for Windows 5.0.

  • Issue related to DPI scaling across multiple monitors with regards to the Classification Selector dialog. Classification dialog did not work with high DPI scaling when using monitors with different DPI and/or resolution which resulted in the UI being displayed off screen.

  • The Classification Selector dialog is now available on the first Resend action.

    NOTE: This fix applies only to resends of messages sent with the fix; resends of old messages will not have the Classification Selector dialog available on the first resend.
  • When using a Right to Left language, the configured font in a visual marking was not retained when working with Microsoft PowerPoint.

  • While Schema Justification is enabled, when applying metadata to multiple files, DCS for Desktop now writes Event 3001 to Audit and Windows Event loggers.

  • The One-Click button layout now reflects the layout as defined in the configuration for the Schema Field. This occurred in TCS for Windows 2023.1.

  • Corrected layout of One-Click buttons when they are linked to a conditional parent field when displayed in the Classification Selector dialog. This occurred in TCS for Windows 2023.1.

  • DCS for Outlook no longer causes Microsoft Outlook to opaquely sign messages when Outlook is configured to digitally sign using clear text.

  • When DCS for Office was configured to only show the One-Click ribbon group, the DCS for Windows About Box was unavailable.

  • When selecting multiple files that have not yet been classified, the empty fields show a "Conflicting field values" warning. This occurred on DCS for Desktop.

  • If the Schema Field in a View contained more than one value with the same Display Text, conditionality logic failed which resulted in incorrect metadata being written to the document or email.

  • Accessibility issue occurred in the Classification Selector dialog when selecting values on a One-Click button using the keyboard. This resulted in the focus being on the wrong control.

  • Fixed text wrapping issue when adding Header/Footer to PowerPoint and setting the Slides and Pages option to First slide only.

DCS Services

Version 2023.0 HF1

August 2, 2024

Fixes
  • DCS Services deployment environments can now include non-English language domain controllers.

Back to Top