Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

Categories

Announcements

Announcements regarding the VulnDetect project

Archived

12
Topics

118
Posts

V

The Privacy Policy has been updated to reflect that data now is stored at Hetzner, rather than at AWS.

The module that allows custom content like the Privacy Policy has also been reinstalled and reactivated.

Ping @tom if there are any issues with the forum.
App Requests

Post requests for apps that are missing

Added App Requests

309
Topics

1520
Posts

Colour Contrast Analyser is now detected by VulnDetect and the version numbers are also correct.
@Tom: Thank you for adding this app!
Auto Update Requests

Post requests for apps that you wish to see updated automatically

22
Topics

35
Posts

Please add Keeper Password Manager to the Auto-Patching process, so it is automatically updated (when I select it).
I post one app in one topic, so we can keep the topics smaller.

For Keeper Password Manager there is a Choko package available:
https://community.chocolatey.org/packages/keeper
[Corporate] Deployment -> Custom Software

Announcements regarding the VulnDetect project

4
Topics

4
Posts

T

The purpose of this category is to demonstrate and document how to use the Custom Software feature in VulnDetect.

This feature is still under development, and some of the examples are considered experimental.

Please write comments to the individual posts or write to support. Support will then update the posts as applicable.
Detection Issues

Detection errors and issues should be posted here

Solved Detection Issues

384
Topics

1652
Posts

T

I just noticed that it always was "flagged" as pre-release. We'll consider if the "versions" should be updated to include the "Beta" or "Hotfix" strings.
Bundling Issues

Detection errors and issues should be posted here

Solved Bundling Issues

37
Topics

119
Posts

I see that Smart Game Booster is listed multiple times, but these entries are not bundled.
All instances are created by the installer/updater of the app, so they should be bundled:

c3b6039c-1245-4292-b7fd-d5669f0805a4-image.png
Feature and Functionality Requests

This category will be used to keep track of user contributed suggestions

Implemented Feature Requests

138
Topics

425
Posts

When there is a new 0-Day and Immediate Action is required, then you currently send an email to users.
It would also be cool to see a special icon in the list of apps, that links to the corresponding topic in the forums.

For the 0-day in Microsoft Office / 365 Apps. you released this forum topic:
[0-day][Officially fixed] Microsoft Windows MSDT URI Handler Vulnerability aka "Follina" / CVE-2022-30190

Now it would be great to open this topic with one click from the list of apps.
This increases the security level a lot (mails can be overseen, a res warning icon not).
Bugs and issues

This category will be used to keep track of bugs reported by users

Solved Bugs and Issues

38
Topics

240
Posts

Same problem for Razer Cortex.
In the CSV the Recommended Version is 9.18.7.1508 (an older version).
In the VulnDetect UI you have no recommended version.
General Discussion

Feel free to discuss what was good or bad in Secunia PSI and what you expect from VulnDetect

15
Topics

59
Posts

T

Microsoft has issued official fixes for the 0-day CVE-2022-30190 / Follina:
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-30190

As expected, Microsoft has classified it as a Windows vulnerability.

You can see affected systems here:
https://corporate.vulndetect.com/#/applications/versions?channelTag=microsoft.windows.endrule&status=insecure&title=Microsoft Windows

Note that it requires a recent inspection, hosts that haven't inspected since 14-06-2022 20:00 CET will not report the missing KB update.