Addressed Issues in Site Collector

Site Collector 2.4: Addressed Issues

The Site Collectors 2.4 (November 2024) Addressed Issues section includes details about fixed issues and remediated security vulnerabilities in this release.

Site Collector 2.4: Security Vulnerabilities Remediated in November 2024

The Site Collectors 2.4 (November 2024) release includes remediated security vulnerabilities. For more information about Exabeam’s commitment to remediating vulnerabilities for Site Collector, see the Vulnerability Remediation Policy.

There are no open known CVEs in any container image (Nifi). Toolkit has been deprecated and is no longer in use hence no security vulnerabilities update is available for that.

The following table lists the CVEs remediated for the Nifi container and their severity.

CVEs for NiFi

Critical	High	Medium	Low
Total: 0	Total: 0	Total: 195	Total: 4
–	–	CVE-2023-52887 CVE-2023-52888 CVE-2024-25741 CVE-2024-39486 CVE-2024-39487 CVE-2024-41007 CVE-2024-41010 CVE-2024-41012 CVE-2024-41015 CVE-2024-41017 CVE-2024-41018 CVE-2024-41019 CVE-2024-41020 CVE-2024-41021 CVE-2024-41022 CVE-2024-41023 CVE-2024-41025 CVE-2024-41027 CVE-2024-41028 CVE-2024-41029 CVE-2024-41030 CVE-2024-41031 CVE-2024-41032 CVE-2024-41033 CVE-2024-41034 CVE-2024-41035 CVE-2024-41036 CVE-2024-41037 CVE-2024-41038 CVE-2024-41039 CVE-2024-41041 CVE-2024-41042 CVE-2024-41044 CVE-2024-41045 CVE-2024-41046 CVE-2024-41047 CVE-2024-41048 CVE-2024-41049 CVE-2024-41050 CVE-2024-41051 CVE-2024-41052 CVE-2024-41053 CVE-2024-41054 CVE-2024-41055 CVE-2024-41056 CVE-2024-41057 CVE-2024-41058 CVE-2024-41060 CVE-2024-41061 CVE-2024-41062 CVE-2024-41063 CVE-2024-41064 CVE-2024-41065 CVE-2024-41066 CVE-2024-41067 CVE-2024-41068 CVE-2024-41069 CVE-2024-41070 CVE-2024-41071 CVE-2024-41072 CVE-2024-41073 CVE-2024-41074 CVE-2024-41075 CVE-2024-41076 CVE-2024-41077 CVE-2024-41078 CVE-2024-41079 CVE-2024-41080 CVE-2024-41081 CVE-2024-41082 CVE-2024-41083 CVE-2024-41084 CVE-2024-41085 CVE-2024-41086 CVE-2024-41087 CVE-2024-41088 CVE-2024-41089 CVE-2024-41090 CVE-2024-41091 CVE-2024-41092 CVE-2024-41093 CVE-2024-41094 CVE-2024-41095 CVE-2024-41096 CVE-2024-41097 CVE-2024-41098 CVE-2024-41311 CVE-2024-42063 CVE-2024-42064 CVE-2024-42065 CVE-2024-42066 CVE-2024-42067 CVE-2024-42068 CVE-2024-42069 CVE-2024-42070 CVE-2024-42073 CVE-2024-42074 CVE-2024-42076 CVE-2024-42077 CVE-2024-42079 CVE-2024-42080 CVE-2024-42082 CVE-2024-42084 CVE-2024-42085 CVE-2024-42086 CVE-2024-42087 CVE-2024-42088 CVE-2024-42089 CVE-2024-42090 CVE-2024-42091 CVE-2024-42092 CVE-2024-42093 CVE-2024-42094 CVE-2024-42095 CVE-2024-42096 CVE-2024-42097 CVE-2024-42098 CVE-2024-42100 CVE-2024-42101 CVE-2024-42102 CVE-2024-42103 CVE-2024-42105 CVE-2024-42106 CVE-2024-42108 CVE-2024-42109 CVE-2024-42110 CVE-2024-42111 CVE-2024-42112 CVE-2024-42113 CVE-2024-42114 CVE-2024-42115 CVE-2024-42117 CVE-2024-42118 CVE-2024-42119 CVE-2024-42120 CVE-2024-42121 CVE-2024-42124 CVE-2024-42126 CVE-2024-42127 CVE-2024-42128 CVE-2024-42129 CVE-2024-42130 CVE-2024-42131 CVE-2024-42132 CVE-2024-42133 CVE-2024-42135 CVE-2024-42136 CVE-2024-42137 CVE-2024-42138 CVE-2024-42140 CVE-2024-42141 CVE-2024-42142 CVE-2024-42144 CVE-2024-42145 CVE-2024-42146 CVE-2024-42147 CVE-2024-42149 CVE-2024-42150 CVE-2024-42151 CVE-2024-42152 CVE-2024-42153 CVE-2024-42155 CVE-2024-42156 CVE-2024-42157 CVE-2024-42158 CVE-2024-42161 CVE-2024-42223 CVE-2024-42225 CVE-2024-42227 CVE-2024-42229 CVE-2024-42230 CVE-2024-42231 CVE-2024-42232 CVE-2024-42234 CVE-2024-42235 CVE-2024-42236 CVE-2024-42237 CVE-2024-42238 CVE-2024-42239 CVE-2024-42240 CVE-2024-42241 CVE-2024-42243 CVE-2024-42244 CVE-2024-42245 CVE-2024-42246 CVE-2024-42247 CVE-2024-42248 CVE-2024-42250 CVE-2024-42251 CVE-2024-42252 CVE-2024-42253 CVE-2024-42271 CVE-2024-42280 CVE-2024-43855 CVE-2024-43858	CVE-2021-4217 CVE-2024-37891 CVE-2024-41059 CVE-2024-42104

Site Collector 2.3: Addressed Issues

The Site Collectors 2.3 (October 2024) Addressed Issues section includes details about fixed issues and remediated security vulnerabilities in this release.

Hotfixes in Site Collector 2.3 Release

The following table provides details about the hotfixes and enhancements implemented after the October 2024 release.

Release Number	Description
2.3.1	Resolved an issue that prevented deletion of Windows Event Log Collector instance via the user interface.
2.3.2	Resolved an issue pertaining to Windows Event Log Collector that displayed incorrect data metrics that includes volume and status details.

Site Collector 2.3: Security Vulnerabilities Remediated in October 2024

The Site Collectors 2.3 (October 2024) release includes remediated security vulnerabilities. For more information about Exabeam’s commitment to remediating vulnerabilities for Site Collector, see the Vulnerability Remediation Policy.

There are no open known CVEs in any container image (Nifi). Toolkit has been deprecated and is no longer in use hence no security vulnerabilities update is available for that.

The following table lists the CVEs remediated for the Nifi container and their severity.

CVEs for NiFi

Critical	High	Medium	Low
Total: 0	Total: 0	Total: 9	Total: 1
–	–	CVE-2024-8096 CVE-2023-27043 CVE-2024-6232 CVE-2024-6923 CVE-2024-8088 CVE-2024-45490 CVE-2024-45491 CVE-2024-45492 CVE-2024-7006	CVE-2024-7592

Site Collector 2.2: Addressed Issues

The Site Collectors 2.2 (September 2024) Addressed Issues section includes details about fixed issues and remediated security vulnerabilities in this release.

Site Collector 2.2: Addressed Issues

The following table provides details about the issues fixed during or after the September 2024 release.

Release Number and Issue ID	Description
NGSCL-3674	Fixed an issue in which the Windows Event Log agent collector pulled duplicate logs when historic log fetch is enabled, after upgrading the collector to it’s latest version.

Hotfixes in Site Collector 2.2 Release

The following table provides details about the hotfixes and enhancements implemented after the September 2024 release.

Release Number	Description
2.2.1	Enhanced the monitoring functionality for the Splunk collector to increase reliability. Additionally, resolved Splunk collector specific issue that caused data processing interruptions.
2.2.2	Resolved issues pertaining to operations such as start and stop, performed on Site Collector.
2.2.3	Resolved issues pertaining to operations such as start and stop, performed on Site Collector.
2.2.4	Resolved an issue with paths containing regular expression characters for the File collector.

Site Collector 2.2: Security Vulnerabilities Remediated in September 2024

The Site Collectors 2.2 (September 2024) release includes remediated security vulnerabilities. For more information about Exabeam’s commitment to remediating vulnerabilities for Site Collector, see the Vulnerability Remediation Policy.

There are no open known CVEs in any container image (Nifi). Toolkit has been deprecated and is no longer in use hence no security vulnerabilities update is available for that.

The following table lists the CVEs remediated for the Nifi container and their severity.

CVEs for NiFi

Critical	High	Medium	Low
Total: 0	Total: 1	Total: 117	Total: 1
–	CVE-2024-27398 –	CVE-2023-52882 CVE-2024-27394 CVE-2024-27399 CVE-2024-27401 CVE-2024-35846 CVE-2024-35848 CVE-2024-35850 CVE-2024-35856 CVE-2024-35858 CVE-2024-35859 CVE-2024-35947 CVE-2024-35983 CVE-2024-35986 CVE-2024-35987 CVE-2024-35991 CVE-2024-35993 CVE-2024-35994 CVE-2024-35996 CVE-2024-36001 CVE-2024-36002 CVE-2024-36011 CVE-2024-36017 CVE-2024-36028 CVE-2024-36030 CVE-2024-36031 CVE-2024-36033 CVE-2024-36880 CVE-2024-36881 CVE-2024-36882 CVE-2024-36883 CVE-2024-36884 CVE-2024-36886 CVE-2024-36887 CVE-2024-36888 CVE-2024-36889 CVE-2024-36890 CVE-2024-36891 CVE-2024-36892 CVE-2024-36895 CVE-2024-36896 CVE-2024-36897 CVE-2024-36902 CVE-2024-36904 CVE-2024-36905 CVE-2024-36906 CVE-2024-36916 CVE-2024-36919 CVE-2024-36925 CVE-2024-36926 CVE-2024-36928 CVE-2024-36929 CVE-2024-36930 CVE-2024-36931 CVE-2024-36932 CVE-2024-36933 CVE-2024-36934 CVE-2024-36935 CVE-2024-36936 CVE-2024-36937 CVE-2024-36938 CVE-2024-36939 CVE-2024-36940 CVE-2024-36941 CVE-2024-36943 CVE-2024-36944 CVE-2024-36946 CVE-2024-36947 CVE-2024-36950 CVE-2024-36952 CVE-2024-36953 CVE-2024-36954 CVE-2024-36955 CVE-2024-36956 CVE-2024-36957 CVE-2024-36958 CVE-2024-36959 CVE-2024-36960 CVE-2024-36961 CVE-2024-36962 CVE-2024-36963 CVE-2024-36965 CVE-2024-36967 CVE-2024-36969 CVE-2024-36975 CVE-2024-36977 CVE-2024-36979 CVE-2024-37370 CVE-2024-37371 CVE-2024-38539 CVE-2024-38542 CVE-2024-38551 CVE-2024-38561 CVE-2024-38562 CVE-2024-38563 CVE-2024-38566 CVE-2024-38568 CVE-2024-38569 CVE-2024-38572 CVE-2024-38574 CVE-2024-38575 CVE-2024-38576 CVE-2024-38584 CVE-2024-38585 CVE-2024-38592 CVE-2024-38593 CVE-2024-38595 CVE-2024-38600 CVE-2024-38603 CVE-2024-38604 CVE-2024-38606 CVE-2024-38614 CVE-2024-38616 CVE-2024-38617 CVE-2024-38620 CVE-2024-42134 CVE-2024-6119 CVE-2024-7264	CVE-2024-4032

Critical

High

Medium

Low

Total: 0

Total: 1

Total: 117

Total: 1

–

CVE-2024-27398

–

CVE-2023-52882
CVE-2024-27394
CVE-2024-27399
CVE-2024-27401
CVE-2024-35846
CVE-2024-35848
CVE-2024-35850
CVE-2024-35856
CVE-2024-35858
CVE-2024-35859
CVE-2024-35947
CVE-2024-35983
CVE-2024-35986
CVE-2024-35987
CVE-2024-35991
CVE-2024-35993
CVE-2024-35994
CVE-2024-35996
CVE-2024-36001
CVE-2024-36002
CVE-2024-36011
CVE-2024-36017
CVE-2024-36028
CVE-2024-36030
CVE-2024-36031
CVE-2024-36033
CVE-2024-36880
CVE-2024-36881
CVE-2024-36882
CVE-2024-36883
CVE-2024-36884
CVE-2024-36886
CVE-2024-36887
CVE-2024-36888
CVE-2024-36889
CVE-2024-36890
CVE-2024-36891
CVE-2024-36892
CVE-2024-36895
CVE-2024-36896
CVE-2024-36897
CVE-2024-36902
CVE-2024-36904
CVE-2024-36905
CVE-2024-36906
CVE-2024-36916
CVE-2024-36919
CVE-2024-36925
CVE-2024-36926
CVE-2024-36928
CVE-2024-36929
CVE-2024-36930
CVE-2024-36931
CVE-2024-36932
CVE-2024-36933
CVE-2024-36934
CVE-2024-36935
CVE-2024-36936
CVE-2024-36937
CVE-2024-36938
CVE-2024-36939
CVE-2024-36940
CVE-2024-36941
CVE-2024-36943
CVE-2024-36944
CVE-2024-36946
CVE-2024-36947
CVE-2024-36950
CVE-2024-36952
CVE-2024-36953
CVE-2024-36954
CVE-2024-36955
CVE-2024-36956
CVE-2024-36957
CVE-2024-36958
CVE-2024-36959
CVE-2024-36960
CVE-2024-36961
CVE-2024-36962
CVE-2024-36963
CVE-2024-36965
CVE-2024-36967
CVE-2024-36969
CVE-2024-36975
CVE-2024-36977
CVE-2024-36979
CVE-2024-37370
CVE-2024-37371
CVE-2024-38539
CVE-2024-38542
CVE-2024-38551
CVE-2024-38561
CVE-2024-38562
CVE-2024-38563
CVE-2024-38566
CVE-2024-38568
CVE-2024-38569
CVE-2024-38572
CVE-2024-38574
CVE-2024-38575
CVE-2024-38576
CVE-2024-38584
CVE-2024-38585
CVE-2024-38592
CVE-2024-38593
CVE-2024-38595
CVE-2024-38600
CVE-2024-38603
CVE-2024-38604
CVE-2024-38606
CVE-2024-38614
CVE-2024-38616
CVE-2024-38617
CVE-2024-38620
CVE-2024-42134
CVE-2024-6119
CVE-2024-7264

CVE-2024-4032

Site Collector 2.1: Addressed Issues

The Site Collectors 2.1 (August 2024) Addressed Issues section includes details about fixed issues and remediated security vulnerabilities in this release.

Site Collector 2.1: Addressed Issues

The following table provides details about the issues fixed after the August 2024 release.

Release Number and Issue ID	Description
NGSCL-3696	Fixed an issue in which the Splunk Fetch Timestamp value and the collector name for a Splunk collector instance could not be updated and the associated logs could not be searched by the Search functionality.

Hotfixes in Site Collector 2.1 Release

The following table provides details about the hotfixes and enhancements implemented after the August 2024 release.

Release Number	Description
2.1.1	0.5.1 – Fixed an issue which caused disruption in docker compose installation.
2.1.2	0.5.1 – Fixed an issue that caused timestamp failure.
2.1.3	0.5.1 – Fixed an issue in which the Windows Event Log Collector caused a heartbeat error for the Site Collector instance.
2.1.3	0.5.2 – Updated the precheck log to check and resolve docker compose v2 installation errors.
2.1.3	0.5.3 – Fixed an issue that caused docker compose v2 installation errors.

Site Collector 2.1: Security Vulnerabilities Remediated in August 2024

The Site Collectors 2.1 (August 2024) release includes remediated security vulnerabilities. For more information about Exabeam’s commitment to remediating vulnerabilities for Site Collector, see the Vulnerability Remediation Policy.

There are no open known CVEs in any container image (Nifi and toolkit) and no CVEs are found for NiFi as of the day release image was built.

The following tables list the CVEs by container and severity:

CVEs for NiFi

CVEs for Toolkit

Critical	High	Medium	Low
Total: 0	Total: 0	Total: 3	Total: 5
–	–	CVE-2024-7264 CVE-2024-37370 CVE-2024-37371	CVE-2024-4032 CVE-2024-2511 CVE-2024-4603 CVE-2024-4741 CVE-2024-5535

Site Collector 2.0: Addressed Issues

The Site Collectors 2.0 (July 2024) Addressed Issues section includes details about hotfixes and remediated security vulnerabilities in this release.

Hotfixes in Site Collector 2.0 Release

The following table provides details about the hotfixes and enhancements implemented after the July 2024 release.

Release Number	Description
2.0.1	0.4.9 – Enhanced the versioning system for NiFi custom libraries.
2.0.1	0.4.8 – Fixed issues that caused Site Collector installation failure when custom installation path is specified.
2.0.1	0.4.7 – Set backward compatibility by populating default extraction path.
2.0.1	0.4.6 – Increased the timeout duration for downloading Site Collector configuration files.
2.0.1	0.4.5 – Migrated the bash script to Go for retrieving certificate expiration details.
2.0.1	0.4.4 – Added debugging details to identify upgrade issues related to cert script.
2.0.1	0.4.3 – Fixed an issue for support packages functionality for fetching specific NiFi API information.
2.0.0	Hotfix for Windows Event Log Collector, Windows File Collector, Windows Archive Collector, Linux File Collector, and Linux Archive Collector – Enhanced management functionality to operate independently without the minifi-c2 server dependency.

Site Collector 2.0: Security Vulnerabilities Remediated in July 2024

The Site Collectors 2.0 (July 2024) release includes remediated security vulnerabilities. For more information about Exabeam’s commitment to remediating vulnerabilities for Site Collector, see the Vulnerability Remediation Policy.

The following tables list the CVEs by container and severity:

CVEs for NiFi

Critical	High	Medium	Low
Total: 1	Total: 8	Total: 155	Total: 2
CVE-2016-1000027	CVE-2023-52880 CVE-2024-25710 CVE-2024-26308 CVE-2024-22257 CVE-2024-22243 CVE-2024-22259 CVE-2024-22262 CVE-2024-39689	CVE-2024-35255 CVE-2023-6597 CVE-2024-0450 CVE-2023-6597 CVE-2024-0450 CVE-2023-52488 CVE-2023-52699 CVE-2024-26629 CVE-2024-26654 CVE-2024-26687 CVE-2024-26810 CVE-2024-26811 CVE-2024-26812 CVE-2024-26813 CVE-2024-26814 CVE-2024-26817 CVE-2024-26926 CVE-2024-26929 CVE-2024-26931 CVE-2024-26934 CVE-2024-26935 CVE-2024-26937 CVE-2024-26950 CVE-2024-26951 CVE-2024-26955 CVE-2024-26956 CVE-2024-26957 CVE-2024-26958 CVE-2024-26960 CVE-2024-26961 CVE-2024-26964 CVE-2024-26965 CVE-2024-26966 CVE-2024-26969 CVE-2024-26970 CVE-2024-26973 CVE-2024-26974 CVE-2024-26976 CVE-2024-26977 CVE-2024-26981 CVE-2024-26984 CVE-2024-26988 CVE-2024-26989 CVE-2024-26993 CVE-2024-26994 CVE-2024-26996 CVE-2024-26999 CVE-2024-27000 CVE-2024-27001 CVE-2024-27004 CVE-2024-27008 CVE-2024-27009 CVE-2024-27013 CVE-2024-27015 CVE-2024-27016 CVE-2024-27018 CVE-2024-27019 CVE-2024-27020 CVE-2024-27059 CVE-2024-27393 CVE-2024-27395 CVE-2024-27396 CVE-2024-27437 CVE-2024-35785 CVE-2024-35789 CVE-2024-35791 CVE-2024-35796 CVE-2024-35804 CVE-2024-35805 CVE-2024-35806 CVE-2024-35807 CVE-2024-35809 CVE-2024-35813 CVE-2024-35815 CVE-2024-35817 CVE-2024-35819 CVE-2024-35821 CVE-2024-35822 CVE-2024-35823 CVE-2024-35825 CVE-2024-35847 CVE-2024-35849 CVE-2024-35851 CVE-2024-35852 CVE-2024-35853 CVE-2024-35854 CVE-2024-35855 CVE-2024-35857 CVE-2024-35871 CVE-2024-35872 CVE-2024-35877 CVE-2024-35879 CVE-2024-35884 CVE-2024-35885 CVE-2024-35886 CVE-2024-35888 CVE-2024-35890 CVE-2024-35893 CVE-2024-35895 CVE-2024-35896 CVE-2024-35897 CVE-2024-35898 CVE-2024-35899 CVE-2024-35900 CVE-2024-35902 CVE-2024-35905 CVE-2024-35907 CVE-2024-35910 CVE-2024-35912 CVE-2024-35915 CVE-2024-35918 CVE-2024-35922 CVE-2024-35925 CVE-2024-35927 CVE-2024-35930 CVE-2024-35933 CVE-2024-35934 CVE-2024-35935 CVE-2024-35936 CVE-2024-35938 CVE-2024-35940 CVE-2024-35944 CVE-2024-35950 CVE-2024-35955 CVE-2024-35958 CVE-2024-35960 CVE-2024-35969 CVE-2024-35970 CVE-2024-35973 CVE-2024-35976 CVE-2024-35978 CVE-2024-35982 CVE-2024-35984 CVE-2024-35988 CVE-2024-35989 CVE-2024-35990 CVE-2024-35997 CVE-2024-36004 CVE-2024-36005 CVE-2024-36006 CVE-2024-36007 CVE-2024-36008 CVE-2024-36020 CVE-2024-36025 CVE-2024-36029 CVE-2023-52428 CVE-2024-29131 CVE-2024-29133 CVE-2024-23944 CVE-2024-29857 CVE-2024-30171 CVE-2024-30172 CVE-2022-40735 CVE-2024-38428 CVE-2024-37891	CVE-2024-34447 CVE-2023-3164

CVEs for Toolkit

Critical	High	Medium	Low
Total: 0	Total: 0	Total: 10	Total: 1
–	–	CVE-2023-42363 CVE-2023-42364 CVE-2023-42365 CVE-2023-42366 CVE-2024-25629 CVE-2024-4603 CVE-2024-4741 CVE-2024-5535 CVE-2022-40735 CVE-2024-38428	CVE-2024-2511 –

Critical

High

Medium

Low

Total: 0

Total: 10

Total: 1

–

CVE-2023-42363
CVE-2023-42364
CVE-2023-42365
CVE-2023-42366
CVE-2024-25629
CVE-2024-4603
CVE-2024-4741
CVE-2024-5535
CVE-2022-40735
CVE-2024-38428

CVE-2024-2511

–

Note

MiNiFi has been deprecated and is no longer in use hence no security vulnerabilities update is available for that.

Site Collector 1.20: Addressed Issues

The Site Collectors 1.20.0 (June 2024) addressed issues section includes details about hotfixes and enhancements, and remediated security vulnerabilities in this release.

Hotfixes in Site Collector 1.20 Release

The following table provides details about the hotfixes and enhancements implemented after the June 2024 release.

Release Number	Description
1.20.0	Ngsccli version 0.3.1 – Resolved issues related to the upgrade process to ensure retention and implementation of necessary configurations during the upgrade process.
1.20.0	Ngsccli version 0.3.2 – Included detailed debugging information for identifying and recording missing property values during the upgrade process.
1.20.0	Ngsccli version 0.3.3 – Elaborated the debugging information for resolving the issue of missing NiFi property values after the upgrade process. Added additional logging to capture and identify missing property values during the upgrade process.
1.20.0	Ngsccli version 0.3.4 – Removed the self-extract directory in the /tmp folder that gets created during the upgrade process to prevent potential conflicts with existing files.
1.20.0	Ngsccli version 0.3.5 – Set backward compatibility in case of absence of the extract and install paths.
1.20.0	Ngsccli version 0.3.6 – Removed the debugging information that was added in patch 0.3.2 after resolving the associated issue to streamline the codebase and eliminate redundant logging.
1.20.0	Ngsccli version 0.3.7 – Enhanced the pre-check to support IPv6 loopback in /etc/hosts.
1.20.0	Ngsccli version 0.3.8 – Increased the download timeout interval to accommodate networks with slower download speeds and ensure successful completion of downloads in environments with higher latency.
1.20.0	Ngsccli version 0.3.9 – Optimized performance of Ngsccli to ensure stability, seamless and reliable state changes, and prevention of potential race conditions.
1.20.0	Ngsccli version 0.3.10 – Enhanced the pre-check to support IPv6 loopback in /etc/hosts.
1.20.0	Ngsccli version 0.3.11 – Set backward compatibility by populating default extract and install paths.

Site Collector 1.20: Security Vulnerabilities Remediated in June 2024

The Site Collectors 1.20.0 (June 2024) release includes remediated security vulnerabilities. For more information about Exabeam’s commitment to remediating vulnerabilities for Site Collector, see the Vulnerability Remediation Policy.

The following tables list the CVEs by container and severity:

CVEs for NiFi

Critical	High	Medium	Low
Total: 0	Total: 4	Total: 142	Total: 7
	CVE-2023-6270 CVE-2023-52620 CVE-2024-26583 CVE-2024-26809	CVE-2023-52434 CVE-2023-52497 CVE-2023-52640 CVE-2023-52641 CVE-2023-52644 CVE-2023-52645 CVE-2023-52650 CVE-2023-52652 CVE-2023-52656 CVE-2023-52662 CVE-2023-7042 CVE-2024-21823 CVE-2024-22099 CVE-2024-26601 CVE-2024-26603 CVE-2024-26651 CVE-2024-26659 CVE-2024-26688 CVE-2024-26733 CVE-2024-26735 CVE-2024-26736 CVE-2024-26737 CVE-2024-26743 CVE-2024-26744 CVE-2024-26747 CVE-2024-26748 CVE-2024-26749 CVE-2024-26750 CVE-2024-26751 CVE-2024-26752 CVE-2024-26754 CVE-2024-26763 CVE-2024-26764 CVE-2024-26766 CVE-2024-26769 CVE-2024-26771 CVE-2024-26772 CVE-2024-26773 CVE-2024-26774 CVE-2024-26776 CVE-2024-26777 CVE-2024-26778 CVE-2024-26779 CVE-2024-26782 CVE-2024-26787 CVE-2024-26788 CVE-2024-26790 CVE-2024-26791 CVE-2024-26792 CVE-2024-26793 CVE-2024-26795 CVE-2024-26798 CVE-2024-26801 CVE-2024-26802 CVE-2024-26803 CVE-2024-26804 CVE-2024-26805 CVE-2024-26816 CVE-2024-26833 CVE-2024-26835 CVE-2024-26838 CVE-2024-26839 CVE-2024-26840 CVE-2024-26843 CVE-2024-26845 CVE-2024-26851 CVE-2024-26852 CVE-2024-26855 CVE-2024-26856 CVE-2024-26857 CVE-2024-26859 CVE-2024-26861 CVE-2024-26862 CVE-2024-26863 CVE-2024-26870 CVE-2024-26874 CVE-2024-26875 CVE-2024-26877 CVE-2024-26878 CVE-2024-26880 CVE-2024-26881 CVE-2024-26882 CVE-2024-26883 CVE-2024-26884 CVE-2024-26885 CVE-2024-26889 CVE-2024-26891 CVE-2024-26894 CVE-2024-26897 CVE-2024-26898 CVE-2024-26901 CVE-2024-26903 CVE-2024-26907 CVE-2024-26915 CVE-2024-27024 CVE-2024-27028 CVE-2024-27030 CVE-2024-27034 CVE-2024-27037 CVE-2024-27038 CVE-2024-27039 CVE-2024-27043 CVE-2024-27044 CVE-2024-27045 CVE-2024-27046 CVE-2024-27047 CVE-2024-27051 CVE-2024-27052 CVE-2024-27053 CVE-2024-27054 CVE-2024-27065 CVE-2024-27073 CVE-2024-27074 CVE-2024-27075 CVE-2024-27076 CVE-2024-27077 CVE-2024-27078 CVE-2024-27388 CVE-2024-27390 CVE-2024-27403 CVE-2024-27405 CVE-2024-27410 CVE-2024-27412 CVE-2024-27413 CVE-2024-27414 CVE-2024-27415 CVE-2024-27416 CVE-2024-27417 CVE-2024-27419 CVE-2024-27431 CVE-2024-27432 CVE-2024-27436 CVE-2024-33599 CVE-2024-33600 CVE-2024-33601 CVE-2024-33602 CVE-2024-35811 CVE-2024-35828 CVE-2024-35829 CVE-2024-35830 CVE-2024-35844 CVE-2024-35845	CVE-2024-0841 CVE-2024-26820 CVE-2024-26846 CVE-2024-26872 CVE-2024-26879 CVE-2024-26895 CVE-2024-26906

CVEs for MiniFi

Critical	High	Medium	Low
Total: 0	Total: 0	Total: 4	Total: 0
		CVE-2024-33599 CVE-2024-33600 CVE-2024-33601 CVE-2024-33602

CVEs for Toolkit

Critical	High	Medium	Low
Total: 0	Total: 0	Total: 4	Total: 0
–	–	CVE-2024-33599 CVE-2024-33600 CVE-2024-33601 CVE-2024-33602	–

Site Collector 1.19: Addressed Issues

Release Number	Description
1.19.4	Fixed minor issues pertaining to File collector configuration attributes.
1.19.3	Fixed an issue related to Windows File Collector GCS filename for ECP bucket support.
1.19.2	Enhanced security certificates for Linux File Collector, and Linux Archive Collector for optimized data integrity, authentication, and encryption.
1.19.1	Updated security certificates for Windows Event Log Collector, and Windows File Collector for optimized data integrity, authentication, and encryption.
1.19	Following are the hotfixes for Windows File Collector. 0.1.1 – Enhanced collector configurations to support larger files and improved Events Per Second (EPS) performance. 1.1.0 – Updated version of the collectors for General Availability (GA) release. Following are the hotfixes for Linux File Collector. 0.0.2 – Enhanced collector configurations to support larger files with improved Events Per Second (EPS) performance. 1.1.0 – Updated version of the collectors for General Availability (GA) release. Hotfix for Linux Archive Collector: 1.1.0 – Updated version of the collectors for General Availability (GA) release. Hotfix for Windows Event Log Collector: 1.1.0 – Updated version of the collectors for General Availability (GA) release.

Site Collector 1.18: Addressed Issues

Release Number	Description
1.18.3	Fixed issues related to collector updates at collector level.
1.18.2	Fixed issues pertaining to installation of prechecks binary file.
1.18.1	Enhanced the precheck feature to support multiple operating systems.

Site Collector 1.17: Addressed Issues

Release Number	Description
1.17.2	Improved monitoring at collector level to optimize performance with multiple collector instances.
1.17.1	Enhanced and extended monitoring capabilities for Site Collector to support a wider range of collectors.

Site Collector 1.16: Addressed Issues

Release Number	Description
1.16.2	Updated some minor prechecks.
1.16.1	Fixed a communication failure with service related issue at collector level.

Site Collector 1.15: Addressed Issues

Release Number and Issue ID	Description
1.15	Following are the hotfixes for Windows Event Log Collector. 0.0.6 – Removed debug logs during the operation of the Windows Event Log Collector to enhance user experience and improve readability. 0.1.0 – Resolved the version mismatch issue for agent management functionality that enables management operations such as add, update, and stop, and the collector service that enables log collection. Hotfix for Windows Archive Collector and Windows File Collector – 0.1.0 – Resolved the version mismatch issue for agent management functionality that enables management operations such as add, update, and stop, and the collector service that enables log collection.
1.15.4	Fixed an issue in which Site Collector upgrade failed if the IP address of the VM host on which Site Collector is being installed did not match the IP address you entered while installing a Site Collector instance via the user interface. The installation precheck script verifies the IP address and prevents installation and upgrade failure.
1.15.3	Enhanced performance of Splunk collector that now lets you update the fetch interval in Splunk collector without resetting the data fetch clock for the next data pull.
1.15.2	Fixed an issue in which a collector instance could not be renamed via collector configuration page while editing configuration for a collector instance.
1.15.1 – NGSCL-2620	Enhanced configuration for the Syslog receiver of Site Collectors service to handle UDP packets and eliminate UDP packet drops within Syslog.
1.15.1	Fixed an issue in which a Site Collector instance did not apply changes that you initiated via user interface such as start, stop, delete, and update.

Site Collector 1.14: Addressed Issues

Release Number and Issue ID	Description
1.14.1 – NGSCL-2560	Fixed an issue in which memory leak was observed for the Fortinet Collector after running the collector for more than eight hours.
1.14	0.0.1 – Initial release of Windows Archive Collector, Linux File Collector, Linux Archive Collector, and Windows File Collector.

Site Collector 1.13: Issues Addressed in October 2023

Release Number and Issue ID	Description
1.13.5	Installation optimization.
1.13.4	Installation optimization.
1.13.3 – NGSCL-2414	Fixed an issue in which Site Collector displayed connectivity and certificate errors.
1.13.2 – NGSCL-2443	Updated the precheck script to remove the ports 9090, 9100 and 9092 for Prometheus that are no longer required.
1.13.1	Updated the precheck script to check available space for the /tmp folder.

Site Collector 1.11: Issues Addressed in August 2023

Issue ID	Description
NGSCL-1305	Fixed an issue in which Splunk collector stopped working intermittently and showed the `Run Failed` error message. This error often indicates that the collector is set up using incorrect or expired credentials.
NGSCL-1802	Fixed an issue in which the Windows Event Log Collector instance collected very few logs affecting the log volume because of incorrect template configuration.
NGSCL-1821	Fixed an issue in which deleting a Windows Active Directory Collector instance caused an error 'Stop Failed'.
NGSCL-2029	Fixed an issue in which installation of a Windows Event Log Collector instance by running PowerShell script failed. Windows Defender was treating Windows Event Log Collector installer as a virus or malware.

Site Collector 1.9.4: Issues Addressed in June 2023

Issue ID	Description
NGSCL-1435	Fixed an issue in which upon searching for specific keywords from the collector name, for Site Collector instances, the search results do not display the associated collectors. Site Collectors now support partial keyword search and display all the relevant instances for partial keywords that you may search for.
NGSCL-1610	Fixed an issue in which the Syslog Collector installed on Site Collector version 1.9, shows performance degradation with maximum 7k EPS on the VMs with CPU frequency lower than 2.4GHz.
NGSCL-1678	Fixed issues for Syslog Collector instances that run on User Datagram Protocol (UDP), for the collector to work appropriately with up to 5K EPS rate without any data loss.

Site Collector 1.8: Issues Addressed in May 2023

Issue ID	Description
NGSCL-1205	Fixed an issue in which the Syslog Collector instance stopped working and displayed `Run Failed` state after renaming the collector.
NGSCL-1424	Fixed an issue in which the Syslog Collector displayed the Run Failed error continually for the region US-East1, because of large message frame size.
NGSCL-1510	Fixed an issue in which after deleting a stopped collector instance, the collector instance appears disabled on the Collectors app.

Site Collector 1.6: Issues Addressed in March 2023

Issue ID	Description
NGSCL-1164	Fixed an issue in the service file configuration, in which Site Collector upgrade process did not delete daemon on RH8/9 with SElinux versions earlier than 1.5.3.

Site Collector 1.5: Issues Addressed in January 2023

Issue ID	Description
NGSCL-992	Fixed an issue associated with CVE-2022-42889 vulnerability by updating the configuration.
NGSCL-1059	Implemented a scheduler to move Site Collector instances with 'Installation_Error' status to 'DELETED' status after 24 hours of installation failure.

Site Collector Issues Addressed in December 2022

Issue ID	Description
NGSCL-747	Fixed an issue in which the Last Day Volume/Count column on the user interface displayed inconsistent volume for the ingested data.
NGSCL-1030	Fixed an issue in which regardless of the uninterrupted log flow, the Last Day Volume/Count column on the user interface displayed the status ‘0MB’ after Site Collector installation.
NGSCL-1057	Fixed an issue in which the Collector list showed no aggregated data on the user interface.
NGSCL-1065	Updated the formula to calculate the trend for the ingested data. The Trend column on the Site Collectors user interface now displays the accurate count for the ingested data.

Auto Parser GeneratorSite Collector Release Notes

Table of ContentsTable of Contents