This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject

NetWitness Community

  • Home
  • Products
    • NetWitness Platform
      • Advisories
      • Documentation
        • Platform Documentation
        • Known Issues
        • Security Fixes
        • Hardware Documentation
        • Threat Content
        • Unified Data Model
        • Videos
      • Downloads
      • Integrations
      • Knowledge Base
    • NetWitness Cloud SIEM
      • Advisories
      • Documentation
      • Knowledge Base
    • NetWitness Detect AI
      • Advisories
      • Documentation
      • Knowledge Base
    • NetWitness Investigator
    • NetWitness Orchestrator
      • Advisories
      • Documentation
      • Knowledge Base
      • Legacy NetWitness Orchestrator
        • Advisories
        • Documentation
  • Community
    • Blog
    • Discussions
    • Events
    • Idea Exchange
  • Support
    • Case Portal
      • Create New Case
      • View My Cases
      • View My Team's Cases
    • Community Support
      • Getting Started
      • News & Announcements
      • Community Support Forum
      • Community Support Articles
    • Product Life Cycle
    • Support Information
    • General Security Advisories
  • Training
    • Blog
    • Certification Program
    • Course Catalog
    • New Product Readiness
    • On-Demand Subscriptions
    • Student Resources
    • Upcoming Events
  • Technology Partners
  • Trust Center
Sign InRegister Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
NetWitness Platform Online Documentation
Browse the official NetWitness Platform Online documentation for helpful tutorials, step-by-step instructions, and other valuable resources.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
  • NetWitness Community
  • Products
  • NetWitness Platform
  • Documentation
  • Online Documentation
  • NetWitness Security Fixes
  • Options
    • Subscribe to RSS Feed
    • Bookmark
    • Subscribe
    • Email to a Friend
    • Printer Friendly Page
    • Report Inappropriate Content
    • English
    • French (Français)
    • German (Deutsche)
    • Japanese (日本人)
    • Spanish (Español)
Versions
Collections
All Downloads

Table of Contents

  •   Release Notes
    •   Release Notes 11.7
    •   Release Notes 11.7.0.1
    •   Release Notes 11.7.0.2
    •   Release Notes 11.7.1
    •   Known Issues
    •   Security Fixes
  •   Getting Started
    •   RSA NetWitness Platform
      •   Introduction
      •   User Roles
      •   Basic Navigation
      •   Logs and Network Investigation
      •   Endpoint Investigation
      •   User Entity Behavior Analysis
      •   Common Use Cases and Business Value
    •   Feeds, Parsers and Hunting Packs
      •   Content Quick Start Guide
      •   Network Data and Logs Hunting Guide
      •   UEBA Essentials Hunting Guide
      •   UEBA Essentials Hunting Pack
      •   Content Bundles (Packs)
      •   Investigation Model for Information Security Incident Response
      •   Investigation Feed
      •   Simple Feed Creation
      •   A Treatise on Writing Packet Parsers
      •   Log Parser Customization
      •   All RSA Content Information
  •   Install and Upgrade
    •   Understand the Architecture and Plan
      •   Look at Deployment from a High Level
      •   Choose Your Deployment Options
      •   Review the Architecture and Ports
      •   Third-Party Licenses
    •   Understand Licenses
      •   Understand NetWitness Licenses
    •   Download RSA NetWitness Platform Software
      •   View All Downloads
    •   Install on a Physical Host
      •   Set up Hardware
      •   Physical Host Installation
      •   Create a Build Stick
      •   Configure and Allocate Storage
    •   Install on an On-Premise Host
      •   Install on an On-Premise Virtual Host
      •   Configure and Allocate Storage
      •   Deploy Health and Wellness (BETA) on a Dedicated Virtual Host
    •   Install in the Cloud
      •   Install on an AWS Instance
      •   Install on an Azure Virtual Machine
      •   Install on a Google Cloud Platform Instance
      •   Configure and Allocate Storage
    •   Install Endpoints
      •   About Insights and Advanced Endpoint Agents
      •   Install an Endpoint Server
      •   Install Endpoint Agents
      •   Install and Configure an Endpoint Relay Server
      •   Migrate Version 4.4.0.x to RSA NetWitness Platform
    •   Install Standalone UEBA Server
      •   Install NetWitness UEBA
      •   Integrate with Third-Party SIEM
    •   Install Platform Licenses
      •   Understand How Licensing Works
      •   Understand License Types
      •   Install Product Licenses
    •   Upgrade from 11.x to 11.x
      •   11.x Physical or Virtual Host to Version 11.7
  •   Configure and Manage
    •   Basic Services
      •   Understand Hosts and Services
      •   Deploy Hosts and Install Services
      •   Services Configuration Properties
    •   Configure Live Services
    •   Configure Network Data Capture
      •   Configure a Network Decoder
      •   Configure a Broker or Concentrator
      •   Start and Stop Data Capture
      •   Filter Data and Set Up Alert Rules
      •   Configure Feeds and Parsers
      •   Configure Warehouse Connector
      •   Tuning your Core Database
    •   Configure Log Collection
      •   Capture Data
      •   Basic Log Collection
      •   Supported Event Sources
      •   Event Sources for Log Collection
      •   Search for Specific Event Sources
      •   Windows Legacy Collector
      •   Customize Log Parsers
      •   Edit Log Parsers
      •   Archive Log Data
      •   Configure Workbench
      •   Enable Endpoints for Log Collection
      •   Integration with LogStash
      •   Event Export Connector Installation and Configuration Guide
    •   Configure Endpoint Data Collection
      •   Configure the Endpoint Log Hybrid
      •   Forward Endpoint Data to a Log Decoder
      •   Define Agent Behavior
      •   Risk Score Calculation
      •   Monitor Endpoints outside Your Network
      •   NetWitness Endpoint 4.4
    •   Configure UEBA
    •   Configure Real-Time Analysis, Enrichment Lookup, and Automated Threat Detection
      •   Event Stream Analytics
      •   Best Practices for Writing ESA Rules
      •   Enrichment Lookup Capability
      •   Automated Threat Detection
    •   Configure Incident Management Capability
      •   Incident Response Settings
    •   Configure Application Settings
      •   Configure Access, Notification, Logging, Investigation, Live, and Syslog Settings
      •   Configure Your Dashboard
      •   Review the Dashboards Catalog
    •   Configure Reports
      •   Set Up RSA NetWitness for Report Generation
      •   Generate Reports
      •   Review Reports
      •   Review Core Compliance Reports
    •   Configure Security and User Access
      •   Secure the RSA NetWitness Platform Network
      •   Set Up System-Level Security Settings
      •   Change the Default Admin Password
      •   Configure External Authentication
      •   Configure PKI Authentication
      •   Use a Custom Server Certificate
      •   Manage Users with Roles and Permissions
      •   Implement Data Privacy
    •   Configure Your System
    •   Maintain the System
      •   Monitor Health and Wellness
      •   Monitor Health and Wellness Using Kibana
      •   Reissue Certificates
      •   Track License Usage
      •   Tune Core Database Performance
      •   Manage Periodic Backups and Incidental Restoring
  •   Investigate and Respond
    •   Respond to Incidents
      •   Incident Management
      •   Use Case Examples
    •   Configure System and View Investigate Settings
      •   Configure Query and Session Attributes for Analysts
      •   Configure Global Default Settings and Limits for Investigate
      •   Configure Navigate and Legacy Events View Settings (User Preference)
      •   Configure Events View Settings (User Preference)
      •   Configure Malware Analysis View Settings (User Preference)
    •   Investigate Network Data and Logs
      •   Search for Text Patterns
      •   Use Query Hints in the Events View
      •   Conduct Malware Analysis
    •   Investigate Endpoints
      •   Investigate Endpoints
      •   Isolate a Host from the Network
    •   Analyze User and Entity Behavior
  •   Integrate and Develop
    •   NetWitness Integrations
      •   Integrations Catalog
      •   Integrate with Archer
      •   Integrate with SecurID
      •   Integrate with NetWitness Endpoints
    •   Developer Tools
      •   NetWitness APIs
      •   RESTful API
      •   Core Services APIs
      •   Use the NwConsole
      •   Use the nw-shell Utility to Troubleshoot Operations

Product Resources

  •   Advisories
    •   NetWitness Platform
      •   Product Advisories
      •   Security Advisories
      •   Service Notifications
      •   Technical Advisories
    •   NetWitness Orchestrator
      •   Product Advisories
      •   Security Advisories
      •   Service Notifications
      •   Technical Advisories
  •   Blog
  •   Discussions
  •   Documentation
    •   NetWitness Platform
    •   Cloud SIEM
    •   Detect AI
    •   Hardware Setup Guides
    •   Investigator
    •   Orchestrator
    •   Threat Intelligence
  •   Downloads
    •   RSA NetWitness Platform
    •   RSA NetWitness Investigator
    •   RSA NetWitness Endpoint
  •   Events
  •   Ideas
  •   Integrations
  •   Knowledge Base
    •   NetWitness Platform
    •   NetWitness Endpoint 4.x
  •   Training
  •   Videos
NetWitness Security Fixes

NetWitness Security Fixes

The following table provides information on the security fixes that were packaged with various NetWitness Platform releases.

 

NOTE : Security Fixes for the major releases such as 11.6, 11.7, are not listed below as there are no exclusive fixes in the release. All the fixes from the previous releases will be included in the major release.

 

For more information on NetWitness Platform security, see NetWitness Platform Security

For more information on the Security Fixes, see the Security Advisories. 

 

Fixed in Version Security Fixes
11.7.0.1 CVE-2021-44228 (Fixed or Mitigated)
11.5.3.3 CVE-2021-44228 (Fixed or Mitigated) 
11.6.1.3 CVE-2021-44228 (Fixed or Mitigated) 
11.6.1.2 CVE-2021-22555, CVE-2021-32399, CVE-2020-27777, CVE-2021-29154, CVE-2021-29650, CVE-2021-31535, CVE-2021-25214, CVE-2021-3715, CVE-2021-2388, CVE-2021-2341, CVE-2021-2369
11.6.1.1 CVE-2021-32719, CVE-2021-2341, CVE-2021-2369, CVE-2021-2388, CVE-2021-33909, CVE-2021-33034, CVE-2019-20934, CVE-2020-11668, CVE-2021-33033
11.6.1 CVE-2019-7608, CVE-2019-7609, CVE-2018-17245, CVE-2018-17246, CVE-2020-26296 and CVE-2021-22116
11.6.0.1 CVE-2019-10208, CVE-2020-25694, CVE-2020-25695, CVE-2020-12362, CVE-2020-12363, CVE-2020-12364, CVE-2020-27170, CVE-2020-8648, CVE-2021-3347, CVE-2021-25217, CVE-2021-27219, CVE-2021-3472, CVE-2020-25696, CVE-2021-20277, CVE-2021-26937, CVE-2021-25281, CVE-2021-25283, CVE-2020-35662, CVE-2021-3144, CVE-2020-28972, CVE-2021-3197, CVE-2020-28243, CVE-2021-3148, CVE-2021-25282, CVE-2021-25284, CVE-2021-27363, CVE-2021-27364, CVE-2021-27365, CVE-2021-25215, CVE-2021-23017
11.5.3.2 CVE-2021-27803, CVE-2021-26937, CVE-2021-20277, CVE-2021-27363, CVE-2021-27364, CVE-2021-27365, CVE-2021-25281, CVE-2021-25283,CVE-2020-35662, CVE-2021-3144, CVE-2020-28972, CVE-2021-3197, CVE-2020-28243, CVE-2021-3148, CVE-2021-25282, CVE-2021-20305, CVE-2021-2163, and CVE-2021-25284.
11.5.3.1 CVE-2019-19532, CVE-2020-0427, CVE-2020-7053, CVE-2020-14351, CVE-2020-5211, CVE-2020-25645, CVE-2020-25656, CVE-2020-25705, CVE-2020-28374, CVE-2020-29661, CVE-2021-20265, CVE-2020-8625, CVE-2020-14347, CVE-2020-14360, and CVE-2020-25712.
11.6 CVE-2020-11022, and CVE-2020-11023.
11.5.3 CVE-2017-18551, CVE-2018-20836, CVE-2019-12614, CVE-2019-15217, CVE-2019-15807, CVE-2019-15917, CVE-2019-16231, CVE-2019-16233, CVE-2019-16994, CVE-2019-17053, CVE-2019-17055, CVE-2019-18808, CVE-2019-19046, CVE-2019-19055, CVE-2019-19058, CVE-2019-19059, CVE-2019-19062, CVE-2019-19063, CVE-2019-19332, CVE-2019-19447, CVE-2019-19523, CVE-2019-19524, CVE-2019-19530, CVE-2019-19534, CVE-2019-19537, CVE-2019-19767, CVE-2019-19807, CVE-2019-20054, CVE-2019-20095, CVE-2019-20636, CVE-2019-9454, CVE-2019-9458, CVE-2020-10690, CVE-2020-10732, CVE-2020-10742, CVE-2020-10751, CVE-2020-10942, CVE-2020-11565, CVE-2020-12770, CVE-2020-12826, CVE-2020-14305, CVE-2020-1749, CVE-2020-2732, CVE-2020-8647, CVE-2020-8649, CVE-2020-9383, CVE-2019-18282, CVE-2020-10769, CVE-2020-14314, CVE-2020-14385, CVE-2020-24394, CVE-2020-25212, CVE-2020-25643, CVE-2019-20811, CVE-2020-14331, CVE-2019-19527, CVE-2020-10757, CVE-2020-12653, CVE-2020-12654, CVE-2020-12321, CVE-2020-13765, CVE-2020-16092, CVE-2020-10543, CVE-2020-10878, CVE-2020-12723, CVE-2019-25013, CVE-2020-10029, CVE-2020-29573, CVE-2019-19126, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-15862, CVE-2020-1971, CVE-2020-14318, CVE-2020-14323, CVE-2020-1472, CVE-2020-8622, CVE-2020-8623, CVE-2020-8624, CVE-2020-8177, CVE-2019-20907, CVE-2020-14345, CVE-2020-14346, CVE-2020-14361, CVE-2020-14362, CVE-2020-14364, CVE-2020-1983, CVE-2019-11719, CVE-2019-11727, CVE-2019-11756, CVE-2019-17006, CVE-2019-17023, CVE-2020-12400, CVE-2020-12401, CVE-2020-12402, CVE-2020-12403, CVE-2020-6829, CVE-2020-14363, CVE-2020-12825, CVE-2020-14779, CVE-2020-14781, CVE-2020-14782, CVE-2020-14792, CVE-2020-14796, CVE-2020-14797, CVE-2020-14803, CVE-2020-15999, CVE-2019-20386, CVE-2019-14907, CVE-2018-15746, CVE-2019-20382, CVE-2019-16935, CVE-2020-12243, CVE-2019-2974, CVE-2020-2574, CVE-2020-2752, CVE-2020-2780, CVE-2020-2812, CVE-2019-19956, CVE-2019-20388, CVE-2020-7595, CVE-2019-14973, CVE-2019-17546, CVE-2019-17498, CVE-2017-12652, CVE-2019-1010305, CVE-2017-15715, CVE-2018-1283, CVE-2018-1303, CVE-2019-10098, CVE-2020-1927, CVE-2020-1934, CVE-2019-12450, CVE-2019-14822, CVE-2018-20843, CVE-2019-15903, CVE-2019-5094, CVE-2019-5188, CVE-2019-14834, CVE-2019-12749, CVE-2020-12049, CVE-2019-5482, CVE-2017-18190, CVE-2019-8675, CVE-2019-8696, CVE-2019-14866, CVE-2018-10896, CVE-2020-8631, CVE-2020-8632, CVE-2020-14556, CVE-2020-14562, CVE-2020-14573, CVE-2020-14577, CVE-2020-14583, CVE-2020-14593, and CVE-2020-14621.
11.5 CVE-2015-9289, CVE-2017-17807, CVE-2018-19985, CVE-2018-20169, CVE-2018-7191, CVE-2019-10207, CVE-2019-10638, CVE-2019-10639, CVE-2019-11190, CVE-2019-11884, CVE-2019-12382, CVE-2019-13233, CVE-2019-13648, CVE-2019-14283, CVE-2019-15916, CVE-2019-16746, CVE-2019-18660, CVE-2019-3901, CVE-2019-9503, CVE-2019-11487, CVE-2019-17666, CVE-2019-19338, CVE-2020-8616, CVE-2020-8617, CVE-2018-5745, CVE-2019-6465, CVE-2019-6477, CVE-2020-5208, CVE-2020-2754, CVE-2020-2755, CVE-2020-2756, CVE-2020-2757, CVE-2020-2767, CVE-2020-2773, CVE-2020-2778, CVE-2020-2781, CVE-2020-2800, CVE-2020-2803, CVE-2020-2805, CVE-2020-2816, CVE-2020-2830, CVE-2019-13232, CVE-2019-10197, CVE-2019-10218, CVE-2019-17041, CVE-2019-17042, CVE-2018-20852, CVE-2019-16056, CVE-2018-1116, CVE-2018-18066, CVE-2019-2737, CVE-2019-2739, CVE-2019-2740, CVE-2019-2805, CVE-2015-8035, CVE-2016-5131, CVE-2017-15412, CVE-2017-18258, CVE-2018-14404, CVE-2018-14567, CVE-2018-13139, CVE-2018-18751, CVE-2017-15710, CVE-2018-1301, CVE-2018-17199, CVE-2019-3820, CVE-2018-10360, CVE-2015-2716, CVE-2019-5436, CVE-2019-9924, CVE-2018-4180, CVE-2018-4181, CVE-2018-4700, CVE-2017-6519, CVE-2018-15587, CVE-2019-3890, and CVE-2020-10531.
11.4.1.1 CVE-2020-11651, and CVE-2020-11652.
11.4.1 CVE-2019-14821, CVE-2019-15239, CVE-2019-14816, CVE-2019-14895, CVE-2019-14898, CVE-2019-14901, CVE-2019-17133, CVE-2018-19519, CVE-2019-11729, CVE-2019-11745, CVE-2019-14906, CVE-2020-2583, CVE-2020-2601, CVE-2020-2590, CVE-2020-2655, CVE-2020-2604, CVE-2020-2593, CVE-2020-2654, CVE-2020-2659, CVE-2019-18397, CVE-2019-14378
11.4 CVE-2018-20856, CVE-2019-10126, CVE-2019-3846, CVE-2019-9506, CVE-2019-14835, CVE-2018-10853, CVE-2018-13053, CVE-2018-13093, CVE-2018-13094, CVE-2018-13095, CVE-2018-14625, CVE-2018-14734, CVE-2018-15594, CVE-2018-16658, CVE-2018-16885, CVE-2018-18281, CVE-2018-7755, CVE-2018-8087, CVE-2018-9363, CVE-2018-9516, CVE-2018-9517, CVE-2019-11599, CVE-2019-11810, CVE-2019-11833, CVE-2019-3459, CVE-2019-3460, CVE-2019-3882, CVE-2019-3900, CVE-2019-5489, CVE-2019-7222, CVE-2019-1125, CVE-2019-9500, CVE-2018-12207, CVE-2019-0154, CVE-2019-11135, CVE-2019-0155, CVE-2018-14646, CVE-2018-14633, CVE-2015-9251, CVE-2019-11358, CVE-2019-6470, CVE-2018-20060, CVE-2019-11236, CVE-2018-18074, CVE-2018-14647, CVE-2019-5010, CVE-2019-9740, CVE-2019-9947, CVE-2019-9948, CVE-2018-14598, CVE-2018-14599, CVE-2018-14600, CVE-2018-15853, CVE-2018-15854, CVE-2018-15855, CVE-2018-15856, CVE-2018-15857, CVE-2018-15859, CVE-2018-15861, CVE-2018-15862, CVE-2018-15863, CVE-2018-15864, CVE-2018-19788, CVE-2018-5741, CVE-2018-15473, CVE-2018-0495, CVE-2018-12404, CVE-2016-10739, CVE-2018-16062, CVE-2018-16402, CVE-2018-16403, CVE-2018-18310, CVE-2018-18520, CVE-2018-18521, CVE-2019-7149, CVE-2019-7150, CVE-2019-7664, CVE-2019-7665, CVE-2018-1122, CVE-2018-5383, CVE-2018-15686, CVE-2018-16866, CVE-2018-16888, CVE-2018-16842, CVE-2018-1000876, CVE-2018-12641, CVE-2018-12697, CVE-2019-3858, CVE-2019-3861, CVE-2018-16881, CVE-2018-7409, CVE-2018-7485, CVE-2018-18384, CVE-2016-3186, CVE-2018-10779, CVE-2018-10963, CVE-2018-12900, CVE-2018-17100, CVE-2018-17101, CVE-2018-18557, CVE-2018-18661, CVE-2018-7456, CVE-2018-8905, CVE-2018-3058, CVE-2018-3063, CVE-2018-3066, CVE-2018-3081, CVE-2018-3282, CVE-2019-2503, CVE-2019-2529, CVE-2019-2614, CVE-2019-2627, CVE-2018-18584, CVE-2018-18585, CVE-2019-0217, CVE-2019-0220, CVE-2018-14348, CVE-2019-14287, CVE-2018-12327, CVE-2019-3880, CVE-2018-0734, CVE-2019-1559, CVE-2019-2945, CVE-2019-2949, CVE-2019-2962, CVE-2019-2964, CVE-2019-2973, CVE-2019-2975, CVE-2019-2977, CVE-2019-2978, CVE-2019-2981, CVE-2019-2983, CVE-2019-2987, CVE-2019-2988, CVE-2019-2989, CVE-2019-2992, CVE-2019-2999, CVE-2018-18311, CVE-2018-14679, CVE-2018-14680, CVE-2018-14681, CVE-2018-14682, CVE-2019-3815, CVE-2018-5742, CVE-2018-1050, CVE-2018-1139, CVE-2018-10858, CVE-2018-10906, CVE-2017-3735, CVE-2018-0732, CVE-2018-0737, CVE-2018-0739, CVE-2018-14665, CVE-2015-9262, CVE-2016-2183, CVE-2018-1000007, CVE-2018-1000120, CVE-2018-1000121, CVE-2018-1000122, CVE-2018-1000301, CVE-2017-18267, CVE-2018-10733, CVE-2018-10767, CVE-2018-10768, CVE-2018-12910, and CVE-2018-13988.
Labels (1)
Labels:
  • Security Fixes

0 Likes
Was this article helpful? Yes No
Share
No ratings

On this page

Powered by Khoros
  • Blog
  • Events
  • Discussions
  • Idea Exchange
  • Knowledge Base
  • Case Portal
  • Community Support
  • Product Life Cycle
  • Support Information
  • About the Community
  • Terms & Conditions
  • Privacy Statement
  • Acceptable Use Policy
  • Employee Login
© 2022 RSA Security LLC or its affiliates. All rights reserved.