Security Notice 07162021

Compliance Guardian Patch Notice

Published: July 16, 2021

Version: 1.0

Executive Summary

AvePoint is releasing this security advisory to inform customers that we have identified a Medium vulnerability in our Compliance Guardian solution. The issue can be addressed with a patch.

Advisory Details

AvePoint has identified a vulnerability within the deep scan capability of Compliance Guardian. No remote code execution is possible. The vulnerability can be addressed via a patch which includes new DLLs which will resolve the issue.

Mitigation Steps

Customer Responsibilities: Customers should contact AvePoint customer support to arrange for a patch.

Support contact options: Please visit Support for contact options. No additional action is required.

Our customers security and privacy are our highest priority. If you have any questions about this and/or you are contacted by anyone else about this issue, please contact our security team immediately at security@avepoint.com.

For your additional information please find AvePoint’s reporting policy and response plan:
https://www.avepoint.com/company/vulnerability-reporting-policy/