Bug Fixes

This section describes the bug fixes in this release.

CERT

  • Resolved an issue where Linux configuration fetch failed with a NullPointerException during Cloud Connector agent failover after throttling. This fix ensures proper SSH connection re-creation and stable configuration retrieval.
  • Resolved an issue where midnight config sync failed due to invalid characters in the Linux server version string being persisted to the database. Validation has been added to sanitize the version value before persistence, defaulting it to Unknown when invalid characters are detected, ensuring successful config sync without impacting valid device identification.
  • Resolved an issue in the firewall-device-update where device update operations failed for devices without an IP address. The device lookup logic has been enhanced to identify devices using either IP address or FQDN, ensuring successful updates in all supported scenarios.
  • Resolved an issue in WebLogic SSL status retrieval where the get('Enabled') command was repeatedly executed after a failure due to missing retry count incrementation. This fix ensures proper retry handling and prevents unnecessary repeated command executions.
  • The fix ensures MSSQL device onboarding now supports usernames provided in the domainName\username format.
  • Resolved an issue where ADC Nginx device connection recreation failed when the communication mode was missing in the request. The logic has been updated to default the communication mode to SSH when not available, ensuring successful connection re-establishment.
  • Resolved an issue where users with an ADC-only role could view unauthorized modules (CERT and SIGN).
  • Resolved an issue where trust certificates were incorrectly displayed in the Server Inventory when added through the Add Vendor Connector action.
  • Enabled support to edit server devices onboarded via batch upload when using SSH credential type.
  • Discovery deletion now correctly processes both excluded and non-excluded certificates, ensuring complete cleanup of discovery source references during discovery removal operations. Previously, excluded certificates were not being processed during discovery deletion, which caused accumulation of discovery sources over time in the database records. This issue has now been fixed.
  • The Windows EST client v1.5.6 can now detect the machine's context, even if set in a different Windows path, and successfully perform machine certificate enrollment.
  • A new field, pfx_encryption_method is introduced in EST Client v1.5.6 to manage PFX encryption methods in both older and latest Windows versions.

Platform

  • An access control issue where integration configuration APIs were shared between Platform and Visual Workflow permissions has been fixed. New APIs with Platform ACF permissions have been introduced to ensure that only users with platform settings permissions can add and retrieve integration settings.
  • AppViewX fixes a race condition that allowed duplicate usernames and service names to be created when multiple concurrent requests were sent to the user and service creation endpoints. This ensures consistent enforcement of uniqueness and improves overall system reliability.
  • AppViewX fixes an issue that allowed modification of non-UI user fields, such as lastLoginTime and isFirstLogin, through the Modify User Information operation. The fix enforces explicit field whitelisting during updates, preventing unauthorized changes to restricted attributes and improving data integrity and security.
  • AppViewX fixes an access control issue where users with View-only permissions for Service Accounts were able to create new Service Accounts. The API now enforces proper Access Control Framework (ACF) checks, ensuring that only authorized users can create Service Accounts.
  • AppViewX fixes an issue where users with elevated ACF privileges could reset the password of the hidden default administrator account. The platform now restricts all CRUD operations on hidden administrative and system accounts, even for high-privilege users. This change prevents unauthorized modifications and improves the security and integrity of privileged accounts.
  • AppViewX fixes an issue where the SMTP configuration password was inadvertently logged. The platform now removes the affected log entries and ensures that sensitive information is not written to logs, improving security and compliance.
  • AppViewX fixes a server-side input validation issue that allowed HTML content to bypass UI restrictions and be rendered in automated notification emails. The platform now properly sanitizes and HTML-encodes all user-supplied input (first name and last name) included in email subjects and bodies, preventing stored HTML injection and ensuring that special characters are treated as plain text.

SIGN

  • An intermittent issue where the SIGN Get Started page failed to load for some users has been resolved, ensuring consistent and reliable access to the page across environments.