Hello,
Thank you for publishing patch releases for the recent security advisory.
Would you be able to share any indicators that would help determine if an installation was affected prior to patching - maybe something we can look for in the logs?
Can you share if it was discovered internally, reported by a third party, or maybe even discovered after an active attack?
Thanks,
Mike
Hey Mike,
Thanks for your question. We are working on a security incident post mortem presently.
Would you be able to share any indicators that would help determine if an installation was affected prior to patching - maybe something we can look for in the logs?
Not presently. I hope to share more in this regard soon.
Can you share if it was discovered internally, reported by a third party, or maybe even discovered after an active attack?
The vulnerability was discovered by one of our customers during an internal red-team exercise. We have no indication that it was being exploited in the wild.
Hope that helps.
Bobby
