Authentic8 Security Advisory
Authentic8 has released Windows Client version 2.9.27, which includes security enhancements to strengthen client-side communication protections.
Description
Authentic8 has introduced enhancements in Windows Client version 2.9.27 to improve the security of local inter-process communication within the client. These changes strengthen protection from other processes on the same endpoint and align the client with current secure design best practices and defense-in-depth principles.
Fixed Version
Affected Versions
All Silo Windows Client versions prior to 2.9.27 are impacted by the conditions addressed in this advisory. For reference and validation, signatures for prior releases can be found here: https://authentic8.com/app-signatures/
Solution
Authentic8 recommends that all customers upgrade to Windows Client version 2.9.27 at their earliest convenience to benefit from these security enhancements.
This update requires no configuration changes and does not impact normal user workflows.
Windows Client Inter-Process Communication Flow
CVSS v3 Rating: Low
CVSS v3 Score: 3.9
CVSS v3 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:N
Disclaimer
The information provided in this advisory is provided “as is” without warranty of any kind, either express or implied. Authentic8 disclaims all warranties, including the implied warranties of merchantability and fitness for a particular purpose. In no event shall Authentic8 be liable for any damages whatsoever arising out of or in connection with the use or dissemination of this information.
Additional Notes
Authentic8 is committed to continuously improving the security posture of its products and services.
If you have any questions or require assistance with upgrading, please contact Authentic8 Support at: support@authentic8.com