Urgent Patch for CSB Director security vulnerability
Affects all users of CSB Director.
CSB Director leverages third party libraries that are susceptible to a serious vulnerability.
A bad actor can exploit the vulnerability to gain elevated privileges and take full control of servers running CSB Director.
Due to the possibility of CSB Director vaults being exploited in an attack we have released a patch and strongly recommend that you immediately update CSB Director to version 8.6.1. By doing so you stop the exploitation of this vulnerability.
As part of efforts to improve security and be DMARC-compliant, we will be updating the CSB portal to send all emails from @carbonite.com domain rather than the current @evault.com. Please update your email rules to reflect this change.
DMARC = Domain-based Message Authentication, Reporting and Conformance protocol
The Carbonite Team
Copyright © 2022 Carbonite™ an OpenText company. All rights reserved. The list of trademarks is not exhaustive of other trademarks. Registered trademarks, product names, company names, brands and service names mentioned herein are property of OpenText or other respective owners.
Thanks for the heads up!