Monthly Vulnerability Insights: August 2022
Summary of Monthly Vulnerability Insights:The Log4j vulnerability is still being detected/reported by vendors after almost 9 months mostly by IBM: IBM Security Identity ManagerIBM Infosphere Master D...
Blog posts from partners, community members and the Flexera team
Blog Articles
Monthly Vulnerability Insights: July 2022
Summary of Monthly Vulnerability Insights: July reported more advisories than June’s sudden dip. (the first half year was a continued monthly increase until June) The Log4j vulnerability is still bei...
SVM Inventory-Based Vulnerability Assessment
The actionable SVM’s vulnerability assessment results are achieved by performing a file-level scan against special criteria we have identified (referred to as a file signature). This capability provid...
Monthly Vulnerability Insights: June 2022
Summary of Monthly Vulnerability Insights:Total advisories: 517 ↓ (last month: 688). June reported fewer advisories after we have seen an increase each month since the beginning of this year. The Lo...
Monthly Vulnerability Insights: May 2022
Summary of May Vulnerability Insights :May was the month with the highest number of vulnerabilities in the last 18 months. 7 Zero-day Vulnerabilities are reported by Microsoft and Cisco and it was 9 ...
Flexera SVM and Microsoft Internet Explorer EoSL
SVM performs many features not permitted by web browsers, so leverages an ActiveX control to accomplish these tasks (like patch publishing, remote scan, and software suggestions). We recently launched...
Monthly Vulnerability Insights: April 2022
Summary of April Vulnerability Insights :April was the month with the highest number of vulnerabilities in the last 18 months. 9 Zero-day Vulnerabilities were reported including Google Chrome, Micros...
Monthly Vulnerability Insights: March 2022
Summary of March Vulnerability Insights : March was the month with the second-highest number of vulnerabilities in the last 12 months. Most Browsers disclosed zero-day vulnerabilities that also had hi...
Monthly Vulnerability Insights: February 2022
Check our summary of vulnerability data from February 2022! You'll see the total number of vulnerabilities reported this month are 502. And there have been threats associated with these vulnerabilitie...
Monthly Vulnerability Insights: January 2022
Check our summary of vulnerability data from January 2022! You'll see an increase in the number of vulnerabilities reported compared to last month. And there's been an increase in the number of threat...
Monthly Vulnerability Insights: December 2021
Check our summary of vulnerability data from December 2021! You'll see an increase in the number of vulnerabilities reported compared to last month. However, there's been an increase in the number of ...
Apache Log4j “Log4Shell” and Beyond
The following summary of Log4j is credited to Flexera Secunia Research's Lars Wiebusch CVE References CVE-2021-44228, CVE-2021-45046, CVE-2021-45105, CVE-2021-44832, CVE-2021-4104 Introduction In Dece...
ALERT: SVR Outage Planned for Wednesday Jan 5th 2022
There will be Software Vulnerability Research (SVR) outage on or about 10 AM CST on Wednesday, January 5th, 2022 which is planned to last no more than 2 hours. This interruption of service is necessar...
Identifying Apache Log4j JNDI Vulnerability “Log4Shell” and Variants (CVE-2021-44228, CVE-2021-45046, CVE-2021-4104) with SVM
Recently, a vulnerability within Apache Log4j caught widespread public attention and has security, operational, and development teams alike scrambling for analyzing the impact within their own ecosys...
Monthly Vulnerability Insights: November 2021
Check our summary of vulnerability data from November 2021! You'll see a decrease in the number of vulnerabilities reported as compared to last month. However, there's been an increase in the number o...
SVM User Interface FAQ
How do I access the new UI?What browsers are supported by the new UI?What are some new features of the new UI?What limitations are associated with the new UI?Can I still use the old UI?Why would I wan...
Monthly Vulnerability Insights: October 2021
Welcome to our October vulnerability insights report. This comprehensive, monthly review is based upon data from the Secunia Research Team at Flexera who produces valuable advisories leveraged by our ...
Monthly Vulnerability Insights: September 2021
The monthly report for vulnerability insights for September 2021 is here. In September, a total of 461 advisories were reported by the Secunia Research Team for 307 unique products across 72 unique ve...
Monthly Vulnerability Insights: August 2021
Welcome to our monthly vulnerability insights by Flexera. This comprehensive, monthly review is based upon data from the Secunia Research Team at Flexera who produces valuable advisories leveraged by ...
SVM Historical Reporting with PowerBI
A common question that is seen among the IT Operations and Security teams is – "How am I doing with the security vulnerabilities in my environment?" or put differently, "what is the trend of vulnerabl...
EOL Status of Microsoft Products
We are correcting an issue which could result in increased EOL statuses of older Microsoft products. For some Microsoft products the EOL status was not being properly processed because needed Microsof...
New and Improved Threat Scores in SVM and SVR
Exciting new improvements arrive soon to provide even more valuable Threat Scores so you can more accurately focus on those vulnerabilities more likely to be exploited. Specifically, we are planning t...
SVM Disaster Recovery Testing
Flexera conducts periodic failover tests of the Software Vulnerability Manager (SVM) service. We will be performing failover tests on Saturday, February 27th from 4 AM – 8 AM PST. The Software Vulnera...
SVM Support for Intune
We are happy to have introduced the long-awaited capability of supporting the publishing of patches via Intune. We were repeatedly delayed as the necessary APIs remained in beta with Microsoft longer ...
Patch Management Roundtable (Video Recording)
On January 19th, we sat down to discuss the topic of patch management. If you missed, it please find the video of the session below. In this roundtable session on patch management, our experts discus...
Monthly Vulnerability Review - Mid January 2021
Summary 422 advisories for 281 unique product from 66 unique vendors were issued from Mid December 2020 till mid-January 2021. Several Microsoft patches were issued in this month’s Patch Tuesday which...
SolarWinds ‘Supply Chain Attack’ (a.k.a. SUNBURST)
Note: this article is about a current event which is still highly evolving. We encourage customers to revisit as we update the article as things continue to change. Recently, the world received notice...
Monthly Vulnerability Review - Mid November to Mid December
Summary From Mid November till Mid December, 396 advisories were issued for 247 unique products. Two zero-day advisories were issued during this period including a hotly debated SolarWind hack. It ecl...
Monthly Vulnerability Review – October till Mid November 2020
Summary This review is a combination of advisories issued in September up to mid - November. We want to issue the review in the week of Patch Tuesday as most companies have a patch cycle right after t...
Upcoming Support for Intune in SVM
UPDATE: Our Intune publishing capability is now live. Click here for more about our plans to improve and enhance this capability! Original article... Software Vulnerability Manager, in its next rele...
