Product Update 4.12.3.0 - November 21, 2023

The Mandiant Security Validation (MSV) team is pleased to announce version 4.12.3.0 of the MSV platform.

General Enhancements

  • Added documentation for the Content Export API
  • Added the option to skip SSL Cert Creation upon Director install

Bug Fixes

  • Fixed an issue where the Content Service was "Disconnected" for some Directors. It may take up to a week for these Directors to fully update. Content can always be updated manually if needed. See Manage Security Validation Content for more information.
  • Fixed an issue where PCAP Actions were running into errors when PCAP capture was enabled
  • Fixed an issue where the "Run As User" drop-down was disabled when using "Run Again" for a Job
  • Fixed an issue in Report Builder where attempting to edit an existing report resulted in a blank screen
  • Fixed an issue where users were unable to delete S300 Evaluations
  • Fixed an issue where users were unable to define security technologies due to detection & prevention name mismatches
  • Fixed an issue where Directors on larger deployments sometimes displayed a "We're sorry, something went wrong" error and temporarily froze
  • Fixed an issue where Classic Remote Integration Actors were having memory issues due to excessively logging integration testing
  • Fixed an issue where restoring from a Director backup would result in database permission errors

Known Issues

  • OVA Directors have the ability to update Preview Integrations. Non-OVA Directors will be able to update Preview integrations in a coming release.
  • The Multisite Reporting feature and Preview Integrations service are not working properly with RHEL8 Directors. We are working to resolve this issue as soon as possible.
  • Local Event Filtering works as expected but is limited to Match Action, Match Integration, and Match Events (when the latter involves Raw Events). If a rule has a Match Event condition for any field other than Raw Event, the rule does not apply to Local Events. It only applies to events from standard local integrations in MSV.

Appliance OS Security Update

The latest platform security update can always be found on the Validation Section of the Docs Portal. This security update applies to all versions of the product and is cumulative.

Important Installation Notes

Minimum Director version 4.10.0.0 or higher is required to upgrade to version 4.12.3.0.

As of Actor version 4.12.0.0, we have ended support for Actors on 32-bit architectures, as well as the following OSes: Windows 7, Windows 8.1, Windows Server 2012 R2, and MacOS 10.14 Mojave. Contact support if you have any questions or concerns. In the meantime, you must take the following actions:

  • Retire any Endpoint Actors on these platforms
    or
  • Replace the Actors with ones on supported platforms

© Copyright Mandiant. All rights reserved
  • First Published: November 21, 2023
  • Last updated: December 11, 2023
In This Article
Related Articles
  • None
Copyright © 2020 – 2021 Your Company, LLC. All rights reserved.