Netwrix Product Security Update Advisory

Sep 04 2024

Overview

An update has been released to address vulnerabilities in Netwrix Products. Users of the affected versions are advised to update to the latest version.

Affected Products

CVE-2024-36072, CVE-2024-36073, CVE-2024-36074, CVE-2024-36075

CoSoSys DLP Solution versions: ~ 5.9.3.0 (inclusive)

Resolved Vulnerabilities

Remote code execution vulnerabilities in CoSoSys DLP Solution (CVE-2024-36072, CVE-2024-36073, CVE-2024-36074, CVE-2024-36075)

Vulnerability Patches

The following product-specific Vulnerability Patches have been made available with the latest update.

If you are using an affected version, Please contact the manufacturer and apply the separate patch image provided (MP-HWA-EPP4-U0088-M0002) or follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-36072, CVE-2024-36073, CVE-2024-36074, CVE-2024-36075

CoSoSys DLP Solution version: 5.9.4.0

Referenced Sites

[1] CVE-2024-36072 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-36072

[2] CVE-2024-36073 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-36073

[3] CVE-2024-36074 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-36074

[4] CVE-2024-36075 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-36075

[5] ADV-2024-002: Remote Code Execution Vulnerabilities in CoSoSys Endpoint Protector

https://helpcenter.netwrix.com/bundle/z-kb-articles-salesforce/page/kA0Qk0000001E5lKAE.html

Netwrix Product Security Update Advisory

OpenSSL Vulnerability Security Update Advisory (CVE-2024-6119)

VMware Product Security Update Advisory (CVE-2024-38811)

Tags:

OpenSSL Vulnerability Security Update Advisory (CVE-2024-6119)

VMware Product Security Update Advisory (CVE-2024-38811)