The Mandiant Security Validation (MSV) team is pleased to announce version 4.14.0.1 of the MSV platform.
Bug Fixes
- Fixed an issue where a 4.14.0.0 upgraded Director didn't restore properly onto a newly installed 4.14.0.0 Director.
- Fixed an issue where Protected Theater wasn't working after a 4.14.0.0 upgrade and got stuck at "Update in Progress."
- Fixed an issue where the vsetnet command did not correctly apply a static IP address.
- Fixed an issue where Windows Actors couldn't select interfaces other than auto for vregister.
- Fixed an issue where Logrhythm SQL integrations events were reported to MSV but did not appear in Jobs.
- Fixed an issue where the TAAM module didn't surface an error message.
Known Issues
- Local Event Filtering works as expected but is limited to Match Action, Match Integration, and Match Events (when the latter involves Raw Events). If a rule has a Match Event condition for any field other than Raw Event, the rule does not apply to Local Events. It only applies to events from standard local integrations in MSV.
- When you add the first MSI integration on a Remote Integrations Actor, the integration does not get detected. To fix this, reboot the Actor after the first MSI integration is selected for that Actor.
Appliance OS Security Update
The latest platform security update can always be found on the Validation Section of the Docs Portal. This security update applies to all versions of the product and is cumulative.
Important Installation Notes
Minimum Director version 4.12.0.0 or higher is required to upgrade to version 4.14.0.1.