Urgent Patch for CSB Director security vulnerability

Systems affected

Affects all users of CSB Director.

Details

CSB Director leverages third party libraries that are susceptible to a serious vulnerability.

Impact

A bad actor can exploit the vulnerability to gain elevated privileges and take full control of servers running CSB Director.

Solution

Due to the possibility of CSB Director vaults being exploited in an attack we have released a patch and strongly recommend that you immediately update CSB Director to version 8.6.1. By doing so you stop the exploitation of this vulnerability.

As part of efforts to improve security and be DMARC-compliant, we will be updating the CSB portal to send all emails from @carbonite.com domain rather than the current @evault.com. Please update your email rules to reflect this change.

DMARC = Domain-based Message Authentication, Reporting and Conformance protocol

Sincerely,

The Carbonite Team

Copyright © 2022 Carbonite™ an OpenText company. All rights reserved. The list of trademarks is not exhaustive of other trademarks. Registered trademarks, product names, company names, brands and service names mentioned herein are property of OpenText or other respective owners.