Skip to main content

Data LakeExabeam Data Lake i40 Release Notes

Table of Contents

Fixed Issues in Data Lake i40.3

Issue ID

Description

LMS-15499

Fixed a potential problem with weak authorization controls on the Elasticsearch/Kibana endpoints, which allowed a low privileged user to potentially gain read/write permissions to some of the existing Elasticsearch/Kibana endpoints in Data Lake.

LMS-15425

LMS-15419

A critical vulnerability in software using Apache Log4j affected the following Exabeam Products:

  • Logstash and Elasticsearch in Data Lake

  • Logstash and Datadog Agent in Site Collector

This vulnerability has been patched. Learn more about Exabeam's response to the vulnerability on Exabeam Community.

LMS-15302

Fixed an issue In Data Lake, where, when the host IP address was not parsed by default, Data Lake attempted to parse the host IP address and captured unnecessary characters surrounding the IP address. With this fix, the Data Lake default parser strips off these unnecessary characters.