Researchers at Tenable disclosed unpatched vulnerabilities in Comodo Client Security which were patched as of the 2019-07-29 11.4.0.7655 hotfix.



Customers should update endpoints via Auto-update or manually on Endpoint Manager->Device List, as usual. Remember to check the Default Client Version settings in Portal Set-up before updating your clients.

The hotfix contain remediation for CVE-2019-3969, CVE-2019-3970), (CVE-2019-3971), (CVE-2019-3972) (CVE-2019-3973) on the following topics:
  • Blocking access of contained processes to sensitive COM interfaces
  • Improved authorization system for file access

These remediations improve the protection of Containment functionality of the product. The security layers of our product ensure that our customers are still protected however it is strongly suggested that the agents should be updated to this version.

There have been no reported incidents exploiting any of these vulnerabilities and no customers reporting related issues to us.

Regards,
Product Team