Resolved Issues

This section provides a list of resolved issues addressed in this release.

Resolved Issue	Issue ID
MAR-23535	The Flow Agent service does not function as expected when viewing reports.
MAR-23526	Use of password hash instead of password for authentication.
MAR-23525	Exposure of sensitive information to an unauthorized actor.
MAR-23498	Post-authenticated path traversal vulnerability.
MAR-23497	Use of hard-coded cryptographic key.
MAR-23496	Authentication bypass by primary weakness.
MAR-23495	Post-authenticated unrestricted upload of file with dangerous type.
MAR-23494	Post-authenticated improper neutralization of special elements used in an OS command (OS command injection).
MAR-23493	Password in configuration file.
MAR-23492	Absolute path traversal vulnerability.
MAR-23491	Unrestricted upload of file with dangerous type.
MAR-23490	Post-authenticated improper limitation of a pathname to a restricted directory (Path Traversal).
MAR-23489	Use of a broken or risky cryptographic algorithm.
MAR-23488	Exposure of sensitive information to an unauthorized actor.
MAR-23487	Improper neutralization of special elements used in an SQL command (SQL Injection).
MAR-23486	Authentication bypass by primary weakness.
MAR-23446	An "Exit status 11" message appears when attempting to add external mounts to new installations of Analytics 2.5.0.4 in Hyper-V.
MAR-23441	The chapter titles of custom reports created in Scheduled Reports are the same for each report item.
MAR-23423	Frequently, reports are generated with blank index and section names.
MAR-23415	Analytics 2.5.0.4 - Create/Edit Scheduled Report fails when an email body includes HTML script.
MAR-23410	OpenSSL vulnerability: CVE-2023-0286
MAR-23325	Flow DB statistics from the Flow Agent > Devices page are not correct.
MAR-23298	System APIs in Analytics are responding with errors.
MAR-23243	Protection mechanism failure because of missing HTTP security header.
MAR-23223	Mismatch in data viewed in firewall Appflow reports and On-Prem Analytics.