March 22, 2020 Service Pack
The following Service Pack versions were released:
Versions (Sensor and Server) |
|---|
18.0.320 18.1.240 19.0.180 19.1.140 19.2.40 |
The tables below describe the enhancements, fixed issues, and changes included in each version.
The Versions column indicates the versions that include the fix.
The Required Update column indicates if the fix requires sensor/server update.
IMPORTANT: If you want to upgrade your servers to this version, we recommend that you upgrade all components - Registration server, Detection servers, and WebApp server - to this version.
Enhancements
Issue |
Area |
Description |
Versions |
Required Update |
Sensor OS |
|---|---|---|---|---|---|
CYBR-28345 |
Detection Platform |
Detection data storage has been optimized. |
19.1.140, 19.2.40 |
Server |
All |
CYBR-28379 |
Endpoint controls |
Personal firewalls and Device Controls are now supported on endpoints using the Windows 7 operating system. |
19.2.40 |
Sensor |
Windows |
CYBR-28008 |
Investigation |
To better represent the operators’ behaviors, we renamed the ‘contains word’ operator to ‘matches word’ and the ‘doesn’t contain word’ operator to ‘doesn’t match word’. The operators’ behavior has not changed. |
19.1.140, 19.2.40 |
Server |
N/A |
CYBR-24834 |
Investigation |
From the Investigation screen’s Timeline filter, you can include only items that were created within the specified time interval by selecting the ‘Created’ radio button, or items that existed during that interval by selecting the ‘Existed’ radio button. |
19.2.21, 19.1.121, 19.1.140, 19.2.40 |
Server |
N/A |
CYBR-28521 |
NGAV |
To reduce the number of false positives from fileless attacks, we have improved our rules repository for PowerShell Script Analysis. |
18.0.320, 18.1.240, 19.0.180, 19.1.140, 19.2.40 |
Server |
Windows |
CYBR-28541 |
NGAV |
To support investigations into rare cases of DB issues while starting or upgrading, a new log line has been added to the Application Control that will better describe the DB failure. |
18.0.320, 18.1.240, 19.0.180, 19.1.140, 19.2.40 |
Sensor |
Windows |
CYBR-26094 |
Sensor Management |
When installing new sensors, all sensors are automatically assigned the default policy and compliance is set to ‘true’. Since this process is automatic, you do not need to customize the installation parameters. |
19.1.140, 19.2.40 |
Sensor |
Windows |
Fixed issues
Issue |
Area |
Description |
Versions |
Required Update |
Sensor OS |
|---|---|---|---|---|---|
CYBR-28060 |
Endpoint Detection |
After upgrading to the most recent Sensor version, there may be Privilege Escalation Malops which turned out to be false positives. After this fix, we have updated the detection rules to ensure fewer false positive results. |
19.0.180, 19.1.140, 19.2.40 |
Server |
Windows |
CYBR-27902 |
Investigation |
When running an investigation query and using the filter ‘Consumer Action’, the filter did not show the query correctly. This issue has been resolved. |
19.1.140, 19.2.40 |
Server |
N/A |
CYBR-23165 |
Response |
The remediation actions status management mechanism was fixed and now an action that was pending will be set to the appropriate status (Failure/Success) when the sensor gets back online. |
19.0.180, 19.1.140, 19.2.40 |
Server |
All |
CYBR-24286 |
Sensor Management |
The maximum number of sensor policies is 50. When attempting to create additional policies, no error message was displayed. This issue has now been resolved. |
19.1.140, 19.2.40 |
Server |
N/A |
CYBR-28358 |
Sensor Management |
On Linux/Mac machines, sensor configuration would synchronize once every minute even when there was no change. Sensors now synchronize only when a change in configuration has occurred. |
19.1.140, 19.2.40 |
Sensor |
Mac, Linux |
CYBR-28676 |
Sensor Platform |
When upgrading from Sensor version 18.0.231 to 18.0.280, the upgrade would begin but timeout before the upgrade was successfully completed. This issue has now been resolved. |
18.0.281, 18.0.320 |
Sensor |
Windows |