Monthly Vulnerability Insights: March 2022
Summary of March Vulnerability Insights : March was the month with the second-highest number of vulnerabilities in the last 12 months. Most Browsers disclosed zero-day vulnerabilities that also had hi...
Blog posts from partners, community members and the Flexera team
Blog Articles
Monthly Vulnerability Insights: February 2022
Check our summary of vulnerability data from February 2022! You'll see the total number of vulnerabilities reported this month are 502. And there have been threats associated with these vulnerabilitie...
Monthly Vulnerability Insights: January 2022
Check our summary of vulnerability data from January 2022! You'll see an increase in the number of vulnerabilities reported compared to last month. And there's been an increase in the number of threat...
Monthly Vulnerability Insights: December 2021
Check our summary of vulnerability data from December 2021! You'll see an increase in the number of vulnerabilities reported compared to last month. However, there's been an increase in the number of ...
Apache Log4j “Log4Shell” and Beyond
The following summary of Log4j is credited to Flexera Secunia Research's Lars Wiebusch CVE References CVE-2021-44228, CVE-2021-45046, CVE-2021-45105, CVE-2021-44832, CVE-2021-4104 Introduction In Dece...
ALERT: SVR Outage Planned for Wednesday Jan 5th 2022
There will be Software Vulnerability Research (SVR) outage on or about 10 AM CST on Wednesday, January 5th, 2022 which is planned to last no more than 2 hours. This interruption of service is necessar...
Identifying Apache Log4j JNDI Vulnerability “Log4Shell” and Variants (CVE-2021-44228, CVE-2021-45046, CVE-2021-4104) with SVM
Recently, a vulnerability within Apache Log4j caught widespread public attention and has security, operational, and development teams alike scrambling for analyzing the impact within their own ecosys...
Monthly Vulnerability Insights: November 2021
Check our summary of vulnerability data from November 2021! You'll see a decrease in the number of vulnerabilities reported as compared to last month. However, there's been an increase in the number o...
SVM User Interface FAQ
How do I access the new UI?What browsers are supported by the new UI?What are some new features of the new UI?What limitations are associated with the new UI?Can I still use the old UI?Why would I wan...
Monthly Vulnerability Insights: October 2021
Welcome to our October vulnerability insights report. This comprehensive, monthly review is based upon data from the Secunia Research Team at Flexera who produces valuable advisories leveraged by our ...
Monthly Vulnerability Insights: September 2021
The monthly report for vulnerability insights for September 2021 is here. In September, a total of 461 advisories were reported by the Secunia Research Team for 307 unique products across 72 unique ve...
Monthly Vulnerability Insights: August 2021
Welcome to our monthly vulnerability insights by Flexera. This comprehensive, monthly review is based upon data from the Secunia Research Team at Flexera who produces valuable advisories leveraged by ...
SVM Historical Reporting with PowerBI
A common question that is seen among the IT Operations and Security teams is – "How am I doing with the security vulnerabilities in my environment?" or put differently, "what is the trend of vulnerabl...
EOL Status of Microsoft Products
We are correcting an issue which could result in increased EOL statuses of older Microsoft products. For some Microsoft products the EOL status was not being properly processed because needed Microsof...
New and Improved Threat Scores in SVM and SVR
Exciting new improvements arrive soon to provide even more valuable Threat Scores so you can more accurately focus on those vulnerabilities more likely to be exploited. Specifically, we are planning t...
SVM Disaster Recovery Testing
Flexera conducts periodic failover tests of the Software Vulnerability Manager (SVM) service. We will be performing failover tests on Saturday, February 27th from 4 AM – 8 AM PST. The Software Vulnera...
SVM Support for Intune
We are happy to have introduced the long-awaited capability of supporting the publishing of patches via Intune. We were repeatedly delayed as the necessary APIs remained in beta with Microsoft longer ...
Patch Management Roundtable (Video Recording)
On January 19th, we sat down to discuss the topic of patch management. If you missed, it please find the video of the session below. In this roundtable session on patch management, our experts discus...
Monthly Vulnerability Review - Mid January 2021
Summary 422 advisories for 281 unique product from 66 unique vendors were issued from Mid December 2020 till mid-January 2021. Several Microsoft patches were issued in this month’s Patch Tuesday which...
SolarWinds ‘Supply Chain Attack’ (a.k.a. SUNBURST)
Note: this article is about a current event which is still highly evolving. We encourage customers to revisit as we update the article as things continue to change. Recently, the world received notice...
Monthly Vulnerability Review - Mid November to Mid December
Summary From Mid November till Mid December, 396 advisories were issued for 247 unique products. Two zero-day advisories were issued during this period including a hotly debated SolarWind hack. It ecl...
Monthly Vulnerability Review – October till Mid November 2020
Summary This review is a combination of advisories issued in September up to mid - November. We want to issue the review in the week of Patch Tuesday as most companies have a patch cycle right after t...
Upcoming Support for Intune in SVM
UPDATE: Our Intune publishing capability is now live. Click here for more about our plans to improve and enhance this capability! Original article... Software Vulnerability Manager, in its next rele...
ALERT: SVM Outage Planned for Friday November 6th 2020
There will be an outage of service on or about 6pm EST on Friday, November 6th, 2020 which is planned to last no more than 8 hours. This interruption of service is necessary in order for us to update ...
Monthly Vulnerability Review – September 2020
Summary In September, Secunia Research at Flexera issued 514 advisories for 389 unique versions of 289 products from 69 different vendors. Apache Struts and Microsoft Exchange Server had notable vuln...
Requesting Additions to the Vendor Patch Module
The SVM Vendor Patch Module is the largest of its kind. Our goal is to provide the most comprehensive resource covering those applications for which we can provide the best experience. While there is ...
Monthly Vulnerability Review – August 2020
Summary In August, 425 advisories were issued for 354 unique versions of 258 products from 70 different vendors. Two Zero-day vulnerabilities were reported by Microsoft, including one which was known...
Why Does the SVM Admin Console Require Internet Explorer with ActiveX?
Most of our customers use Edge, Chrome, Firefox, and other popular browsers. The requirement for the SVM console is only for certain functionality in the admin console; specifically managing WSUS and ...
Monthly Vulnerability Review – July 2020
Summary In July, Secunia research issued 674 advisories for 83 unique vendors in 361 products and 475 unique versions, while issued 97 rejection notice advisories. An increase of 34.5% advisories from...
Monthly Vulnerability Review – June 2020
Summary 501 advisories for 82 unique vendors in 354 products and 453 unique versions, while issued 111 rejected advisories. An 11% increase in the total number of advisories from the previous month. D...
