Knowledge Base

Access official resources from Carbon Black experts

Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

Environment

Carbon Black Cloud Workload: All Versions
Carbon Black Cloud Sensor: 3.6.x.x and Higher
Microsoft Exchange Server: 2013, 2016, and 2019

Symptoms

Devices show as vulnerable to Critical CVE-2021-26855
Endpoint shows correct patch KB5000871 installed to remediate vulnerability
Reassessing endpoint has no impact

Cause

National Vulnerability Database (NVD) is not providing "fixed by" information for CVE-2021-26855

Resolution

Once NVD provides "fixed by" information for CVE-2021-26855 devices with the appropriate patch installed will no longer show as vulnerable

Related Content

https://nvd.nist.gov/vuln/detail/CVE-2021-26855
Security Update Guide - Microsoft Security Response Center
Workload: How Is Vulnerability Risk and Severity Determined?
Vulnerability Risk Score Whitepaper

Article Information

Author:

Creation Date:

‎07-21-2021

Views:

280

Copyright © 2005-2023 Broadcom. All Rights Reserved. The term “Broadcom” refers to Broadcom Inc. and/or its subsidiaries.