What's New

The NetWitness 11.7.0.1 release notes provides information about the changes in NetWitness Platform 11.7.

Security Fixes

The Log4j vulnerability recently discovered in the commonly used open source logging library has been addressed. This applies to CVE-2021-44228. For more information, see the Security Advisory for Log4j.

Note: This patch release of NetWitness addresses log4j vulnerabilities reported till date. The following CVEs were validated and found to be not exploitable.
- CVE-2021-44228
- CVE-2021-44832
- CVE-2021-4104
- CVE-2021-45105
- CVE-2021-45046
NetWitness will continuously monitor this issue for new developments and provide periodic updates.

Note: If you have the Export Connector plugin in your deployment, you must do the following:
- If you have Logstash installed separately, not as part of the NetWitness installation, you must uninstall the Export Connector plugin and install the updated Export Connector plugin after 11.7.0.1 patch upgrade. For more information to install the updated plugin, see Post-Upgrade Tasks.
- If you have Logstash installed as part of the NetWitness installation on the Log Collector service, the updated Export Connector plugin will be automatically installed during the 11.7.0.1 patch upgrade.

In both the above cases, the old Export Connector plugin files are not automatically removed after upgrade. You must remove the old plugin files, so the scans do not list them as vulnerabilities. For more information on how to remove the old plugin files, see Post-Upgrade Tasks.

Upgrade Paths

The following upgrade paths are supported for NetWitness 11.7.0.1:

  • NetWitness 11.5.3.2 to 11.7.0.1
  • NetWitness 11.5.3.3 to 11.7.0.1
  • NetWitness 11.6.0.0 to 11.7.0.1
  • NetWitness 11.6.0.1 to 11.7.0.1
  • NetWitness 11.6.1.0 to 11.7.0.1
  • NetWitness 11.6.1.1 to 11.7.0.1
  • NetWitness 11.6.1.2 to 11.7.0.1
  • NetWitness 11.6.1.3 to 11.7.0.1
  • NetWitness 11.7.0.0 to 11.7.0.1