The NetWitness 11.7.3.0 Release Notes describe new features, enhancements, security fixes, upgrade paths, fixed issues, known issues, end-of-life functionality, build numbers, and self-help resources.
Security Fixes
This service pack release of NetWitness Platform XDR addresses the following vulnerabilities:
-
CVE-2022-4378
-
CVE-2022-42703
-
CVE-2022-37434
-
CVE-2023-0494
-
CVE-2022-22934
-
CVE-2022-22935
-
CVE-2022-22936
-
CVE-2022-22941
-
CVE-2023-0767
-
CVE-2023-0286
- CVE-2022-42898
- CVE-2022-3550
- CVE-2022-3551
- CVE-2022-41974
For more information on the various vulnerabilities fixed in this service pack release, see https://community.netwitness.com/t5/netwitness-platform-advisories/ct-p/netwitness-advisories#security
Note: If you have the Export Connector plugin in your deployment, you must do the following:
- If you have Logstash installed separately, not as part of the NetWitness installation, you must uninstall the Export Connector plugin and install the updated Export Connector plugin after 11.7.3 patch upgrade. For more information to install the updated plugin, see Post-Upgrade Tasks on the Upgrade Guide for 11.7.3
- If you have Logstash installed as part of the NetWitness installation on the Log Collector service, the updated Export Connector plugin will be automatically installed during the 11.7.3 patch upgrade.
In both the above cases, the old Export Connector plugin files are not automatically removed after upgrade. You must remove the old plugin files, so the scans do not list them as vulnerabilities. For more information on how to remove the old plugin files, see see Post-Upgrade Tasks on the Upgrade Guide for 11.7.3
Endpoint Enhancements
-
The Hosts and Files view is enhanced to help Analysts view the actual risk score of the Blacklisted files. The risk score of the files increases once they are blacklisted.
-
File Name column is exported when you export the Files attributes to a CSV file.
-
The timeouts or delays in mongo.db due to the presence of huge bash history for a few agents are resolved.
Usability Enhancements
The Test Chart feature in Reports (Reports > Charts > Add new chart > Test Chart) is enhanced to load with different time ranges.
Upgrade Paths
The following upgrade paths are supported for NetWitness Platform XDR 11.7.3.0:
-
11.7.2.0 to 11.7.3.0
-
11.7.1.2 to 11.7.3.0
-
11.7.1.1 to 11.7.3.0
-
11.7.1.0 to 11.7.3.0
-
11.7.0.2 to 11.7.3.0
- 11.7.0.1 to 11.7.3.0
- 11.7.0.0 to 11.7.3.0
- 11.6.1.4 to 11.7.3.0
- 11.6.1.3 to 11.7.3.0
- 11.6.1.2 to 11.7.3.0
- 11.6.1.1 to 11.7.3.0
- 11.6.1.0 to 11.7.3.0
- 11.6.0.0 to 11.7.3.0
- 11.5.3.3 to 11.7.3.0
For more information on upgrading to 11.7.3.0, see Upgrade Guide for NetWitness Platform XDR 11.7.3.0