Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

EDR Server: Is CVE-2023-38545 a concern for Carbon Black EDR Server?

EDR Server: Is CVE-2023-38545 a concern for Carbon Black EDR Server?

Environment

  • Carbon Black EDR server: All versions
  • RHEL OS: 9.x

Question

What is Carbon Black's position on the reported existence of CVE-2023-38545 on EDR server machines?

Answer

This RHEL article states only RHEL 9 is affected. EDR server 7.x does not yet support RHEL 9 (as of November, 2023).
Also the "curl" package referenced is not part of the EDR software package and should be addressed/fixed/patched by the OS or owning vender that installed/maintains it.


 

Related Content


Labels (1)
Tags (2)
Was this article helpful? Yes No
No ratings
Article Information
Author:
Creation Date:
‎11-22-2023
Views:
87
Contributors