Security update
Question asked by Lakshan Salgado - 8/3/2021 at 10:59 AM
In the last few weeks I see two instances of "secruity:One or more security items fixed" noted in release notes. Can we change this to where SM can advise us on if this is a Low, Moderate, High or Critical  security fix designation and possibly a CVE? That helps with our change control process,identifying criticality of issue and if the security issue is internal facing or external facing (I.e. via IIS/80/443) or some other port so we can adjust and monitor accordingly. The 'recommendation' note is quite vague. Thank you

2 Replies

Reply to Thread
JerseyConnect Team Replied
Yes any additional details on these vague security fixes would be great.
Kyle Kerst Replied
Employee Post
Security features are by nature; critical. That is why we note them in the release notes the way we do, in order to alert the administrators clearly. Simultaneously, we're attempting to avoid releasing too much information about the security update to avoid attackers exploiting those details. 
Kyle Kerst System/Network Administrator SmarterTools Inc. (877) 357-6278 www.smartertools.com

Reply to Thread