Changelogs for ESET products

• New: Untrusted extensions handling in SBB
• New: Updater logs section
• New: Advanced setup scan section
• Bugfixes and other improvements

• New: Untrusted extensions handling in SBB
• New: Updater logs section
• Bugfixes and other small improvements

• New: ESET Folder Guard (Available for ESET Smart Security Premium, ESET Security Ultimate, ESET Small Business Security)
• New: Added Catalan language
• New: Improved accessibility (added high contrast mode, adding better support in product during installation)
• New: Drag and drop of tiles on overview pane
• Updated: Onboarding wizard
• Bug fixing and other improvements

• New: Untrusted extensions handling in SBB
• New: Updater logs section
• New: Advanced setup scan section
• Bugfixes and other improvements

• New: Untrusted extensions handling in SBB
• New: Updater logs section
• Bugfixes and other small improvements

• New: ESET Folder Guard (Available for ESET Smart Security Premium, ESET Security Ultimate, ESET Small Business Security)
• New: Added Catalan language
• New: Improved accessibility (added high contrast mode, adding better support in product during installation)
• New: Drag and drop of tiles on overview pane
• Updated: Onboarding wizard
• Bug fixing and other improvements

• New: Untrusted extensions handling in SBB
• New: Updater logs section
• New: Advanced setup scan section
• Bugfixes and other improvements

• New: Untrusted extensions handling in SBB
• New: Updater logs section
• Bugfixes and other small improvements

• New: ESET Folder Guard (Available for ESET Smart Security Premium, ESET Security Ultimate, ESET Small Business Security)
• New: Added Catalan language
• New: Improved accessibility (added high contrast mode, adding better support in product during installation)
• New: Drag and drop of tiles on overview pane
• Updated: Onboarding wizard
• Bug fixing and other improvements

• New: Untrusted extensions handling in SBB
• New: Updater logs section
• New: Advanced setup scan section
• Bugfixes and other improvements

• New: Untrusted extensions handling in SBB
• New: Updater logs section
• Bugfixes and other small improvements

• New: ESET Folder Guard (Available for ESET Smart Security Premium, ESET Security Ultimate, ESET Small Business Security)
• New: Added Catalan language
• New: Improved accessibility (added high contrast mode, adding better support in product during installation)
• New: Drag and drop of tiles on overview pane
• Updated: Onboarding wizard
• Bug fixing and other improvements

• Added: End of life communication in the product
• Changed: Minimum supported Android version changed from 8 to 9
• New: Support Android 16

• Bug fixes and optimizations

• Bug fixes and optimizations

• Fixed: Firewall is no longer enabled after upgrade by default, but it will be activated for customers upgrading from version 8, where the firewall was previously enabled and for clean installation. Although the firewall could be disabled by default, its setup in macOS is still required, except for upgrades from version 8, where the firewall was already configured or from ESET CyberSecurity for Mac version 6
• Fixed: Firewall no longer blocks localhost connections for applications such as Gradle, Messenger...
• Fixed: Issues where product reported out-of-date modules even though they were the most up-to-date
• Fixed: Issues where some settings from version 7 were not properly migrated once upgraded to version 8
• Fixed: On-demand scan handler being spammed by "Interrupted system call" in event logs
• Fixed: Issues where the onboarding launched after upgrade when it shouldn't
• Fixed: Shutdown of services during product upgrade
• Fixed: High memory usage when network access protection was disabled by component installation
• Fixed: Various minor issues

• Added: Firewall
• Added: Custom component installation
• Added: License based features
• Improved: Enhanced capabilities of file scanner
• Improved: Reliability of the onboarding wizard
• Removed: Deprecated functions from Uninstaller
• Fixed: Potential security issue
• Fixed: Localized dates in GUI
• Fixed: Various minor bugfixes

• Added: macOS 15 support enabled
• Fixed: Local privilege escalation vulnerability

This is a new version of ESET Cyber Security with Firewall and compatibility with macOS 15 Sequoia. This product update doesn’t contain Parental Control and Device Control. If you use these features and don’t need compatibility with macOS 15, please do not install this product.

• Added: Firewall
• Added: Custom component installation
• Added: License based features
• Improved: Enhanced capabilities of file scanner
• Improved: Reliability of the onboarding wizard
• Fixed: Potential security issue
• Fixed: Localized dates in GUI
• Fixed: Various minor bugfixes
• Removed: Deprecated functions from Uninstaller
• Removed: Parental Control
• Removed: Device Control

• New: Support for new macOS Sonoma

• Added: Ventura Support
• Important: After upgrading to macOS 13 Ventura, you received a warning: Your computer is not fully protected. See https://support.eset.com/kb8339

• Bug fixing & Telemetry

• Fixed: Eula version
• Bug fixing

• Improved: The anti-phishing feature has been redesigned

• Fixed: Protocol/locations screen not accessible from main screen when Kill Switch set to Always On

• Added: Catalan language
• Added: Kill switch settings
• Added: support running app on Windows Server 2022
• Improved: network connectivity detection

• New: Untrusted extensions handling in SBB
• New: Updater logs section
• New: Advanced setup scan section
• Bugfixes and other improvements

• New: Untrusted extensions handling in SBB
• New: Updater logs section
• Bugfixes and other small improvements

• New: ESET Folder Guard (Available for ESET Smart Security Premium, ESET Security Ultimate, ESET Small Business Security)
• New: Added Catalan language
• New: Improved accessibility (added high contrast mode, adding better support in product during installation)
• New: Drag and drop of tiles on overview pane
• Updated: Onboarding wizard
• Bug fixing and other improvements

• New: Untrusted extensions handling in SBB
• New: Updater logs section
• New: Advanced setup scan section
• Bugfixes and other improvements

• New: Untrusted extensions handling in SBB
• New: Updater logs section
• Bugfixes and other small improvements

• New: ESET Folder Guard (Available for ESET Smart Security Premium, ESET Security Ultimate, ESET Small Business Security)
• New: Added Catalan language
• New: Improved accessibility (added high contrast mode, adding better support in product during installation)
• New: Drag and drop of tiles on overview pane
• Updated: Onboarding wizard
• Bug fixing and other improvements

• Fixed: In some specific cases failing upgrade to version 12.0
• Fixed: Incorrect serial number of USB stick detected
• Fixed: Scheduled tasks cannot be enabled or disabled from the GUI during Override Mode
• Fixed: Localization of Subscription license expiration date into Japanese language

• Fixed: Security vulnerability CVE-2024-11859 (record reservation, responsible disclosure policy)
• Fixed: Ransomware Remediation folder exclusions require manual post-editing for every single entry to be functional - an asterisk needs to be appended
• Fixed: Pause until restart function of HIPS settings in Setup
• Fixed: Important warning occurred is displayed while scanning an empty disk drive
• Fixed: LiveGrid User consent settings not properly set by initial setup wizard after Hard upgrade
• Fixed: Not all files removed properly during uninstallation
• Fixed: Ransomware Remediation settings not shown in ESET PROTECT requested client configuration
• Fixed: Incomplete data about update shown in Update section in user interface
• Fixed: On-demand scan Client task not executed properly
• Improved: Newer native Windows File manager window used for the "Browse" button in Ransomware Remediation setting
• Improved: ESET PROTECT task status added to debug logs for support purposes

• New: Ransomware Remediation - backup and recovery of files modified by a ransomware
• New: Exclusions from network isolation
• New: Automatic upgrading of product after End of Life of product version
• New: Advanced setup structure improvements
• New: Automatic patching for applications without known vulnerability
• New: Automatic patching based on vulnerability risk or CVSS base score
• New: Support for Vulnerability patching logging and reports in ESET PROTECT
• New: Support for vulnerability scan reports in ESET PROTECT
• New: Windows Group policy firewall rules being evaluated
• New: Added application Exclusions from suppressing notifications during Presentation mode
• Improved: Search in advanced setup, search and highlighting of matching items
• Improved: Outlook mail plugin improvements and various issues fixed

• Fixed: In some specific cases failing upgrade to version 12.0
• Fixed: Incorrect serial number of USB stick detected
• Fixed: Scheduled tasks cannot be enabled or disabled from the GUI during Override Mode
• Fixed: Localization of Subscription license expiration date into Japanese language

• Fixed: Security vulnerability CVE-2024-11859 (record reservation, responsible disclosure policy)
• Fixed: Ransomware Remediation folder exclusions require manual post-editing for every single entry to be functional - an asterisk needs to be appended
• Fixed: Pause until restart function of HIPS settings in Setup
• Fixed: Important warning occurred is displayed while scanning an empty disk drive
• Fixed: LiveGrid User consent settings not properly set by initial setup wizard after Hard upgrade
• Fixed: Not all files removed properly during uninstallation
• Fixed: Ransomware Remediation settings not shown in ESET PROTECT requested client configuration
• Fixed: Incomplete data about update shown in Update section in user interface
• Fixed: On-demand scan Client task not executed properly
• Improved: Newer native Windows File manager window used for the "Browse" button in Ransomware Remediation setting
• Improved: ESET PROTECT task status added to debug logs for support purposes

• New: Ransomware Remediation - backup and recovery of files modified by a ransomware
• New: Exclusions from network isolation
• New: Automatic upgrading of product after End of Life of product version
• New: Advanced setup structure improvements
• New: Automatic patching for applications without known vulnerability
• New: Automatic patching based on vulnerability risk or CVSS base score
• New: Support for Vulnerability patching logging and reports in ESET PROTECT
• New: Support for vulnerability scan reports in ESET PROTECT
• New: Windows Group policy firewall rules being evaluated
• New: Added application Exclusions from suppressing notifications during Presentation mode
• Improved: Search in advanced setup, search and highlighting of matching items
• Improved: Outlook mail plugin improvements and various issues fixed

• Added: Integration with ESET LiveGuard Advanced

• Fixed: The product sometimes losing FDA after OS restart
• Fixed: PCU update by OS restart no longer breaks the product
• Fixed: Web access protection issues after upgrade from version 6

• New: Support for macOS Sonoma
• New: Branding visuals
• New: Status message for “onboarding not finished”
• Fixed: 3rd party application WeChat now works correctly when installed together with our product
• Fixed: Web Access Protection port settings are now reflected immediately
• Fixed: Advanced setup: manually set up credentials for proxy server are now saved
• Fixed: MacOS Catalina no longer requires reboot when upgrading for Full Disk Access to work
• Fixed: Users can now restore files via the command line
• Fixed: Upgrade from v6 to v7 no longer causes a duplicate entry in ESET Business Account
• Various other small improvements and fixes

• Fixed: Various minor bugs

• Added: Possibility to unlock offline mobile device with the unlock code from ESET PROTECT
• Added: Support for Android 15
• Fixed: Various minor bugs
• Removed: Support for Android 6 and 7

• Fixed: Localization bug displayed in ESET PROTECT

• Added: Option to disable Web Access Protection feature before product installation
• Added: Support of Linux Mint 22
• Improved: Adjusted OOM score for core processes to prevent system blockages
• Improved: Memory consumption of logging service
• Removed: Support of Ubuntu 18.04 LTS
• Fixed: Web Access Protection blocking localhost webpage
• Fixed: Other minor improvement and bugfixes

• Fixed: Issues with V&PM reinitialization after module update
• Fixed: Support of Linux Mint 21.3
• Fixed: Errors occurring during product restart
• Fixed: Other minor fixes and improvements

• ADDED: Vulnerability & Patch Management
• ADDED: Support of ESET PROTECT Hub
• ADDED: Support of Cisco AnyConnect VPN in Web Access Protection
• IMPROVED: Computer reboot not necessary after installation via ESET PROTECT
• IMPROVED: On-Access scan improvement focused on responsivity and timeout elimination
• IMPROVED: Web Access Protection stability and security improvements
• CHANGED: ESET LiveGuard configuration location changes
• CHANGED: Sending of documents changed from LiveGrid & LiveGuard only to LiveGuard 
• FIXED: Product start failures when customer adjust their systemd service timeout settings
• FIXED: Error of reloading Protoscan module after modules update

• Fixed: Detection resolution not replicated from ESET PROTECT On-Prem to ESET Inspect On-Prem
• Fixed: Issues with MSSQL database upgrades when the default schema isn't 'dbo'
• Fixed: Module updates issues in ESET PROTECT On-Prem
• Fixed: ESET Management Agent connection issues after upgrading the ESET PROTECT On-Prem server
• Fixed: Failure to generate MDR report template
• Fixed: Inability to modify permission set for the Administrator account (Virtual Appliance)
• Fixed: Unexpected errors when obtaining license details or using the tags filter
• Fixed: Missing translations when discarding changes in Dynamic Group Templates
• Fixed: Issues with saving operators after creating Dynamic Group Templates
• Fixed: Various other minor improvements and fixes

• Added: Ransomware Remediation support
• Added: ESET LiveGuard Advanced for ESET Endpoint Security for macOS
• Added: Email quarantine supporting ESET Mail Security for Microsoft Exchange Server
• Added: Audit deletion and existing policy modification
• Added: Server installation support on Windows Server 2025
• Added: MySQL MariaDB ODBC driver support
• Improved: Dynamic Group Templates screen refactored to React
• Improved: Login password policy
• Improved: Static group wizard refactored to React
• Fixed: Issues with managing ESET Endpoint Security for macOS
• Fixed: Reloading computer details with active encryption ended up in error
• Fixed: Performance logs missing in the server performance report
• Fixed: Detailed information was not available on the Dashboard when MSP customer was selected
• Fixed: High memory consumption when editing policies with ESET PROTECT On-Prem installed on a Linux platform
• Fixed: Management Agent connection issues after an upgrade
• Fixed: SID column missing under Computer users
• Fixed: Login issues after product upgrade
• Fixed: Incorrect display option to enable Vulnerability & Patch Management" (V&PM not available for On-Prem)
• Fixed: Referenced license is not accessible in tasks and installers
• Removed: Support of MySQL 5.6

• FIXED: Issues with ESET Management Agent connecting to ESET PROTECT On-Prem Server 
• FIXED: Ability to enable VA/PM through solution details
• FIXED: Other minor fixes and improvements

• Improved: Latest version of LogCollecotor bundeled in ESET Management Agent
• Removed: Support of 32-bit ESET Management Agent installer (ESET PROTECT On-Prem related)
• Fixed: DDR5 memory architecture type not recognized
• Other minor improvements and bug fixes

• Added: New Log Collector version
• Fixed: Not receiving notifications about ESET Inspect Connector activation or deactivation in specific cases

• Added: New AVRemover version
• Added: New Log Collector version
• Removed: Support for 32bit operating system

• Fixed: Detection resolution not replicated from ESET PROTECT On-Prem to ESET Inspect On-Prem
• Fixed: Issues with MSSQL database upgrades when the default schema isn't 'dbo'
• Fixed: Module updates issues in ESET PROTECT On-Prem
• Fixed: ESET Management Agent connection issues after upgrading the ESET PROTECT On-Prem server
• Fixed: Failure to generate MDR report template
• Fixed: Inability to modify permission set for the Administrator account (Virtual Appliance)
• Fixed: Unexpected errors when obtaining license details or using the tags filter
• Fixed: Missing translations when discarding changes in Dynamic Group Templates
• Fixed: Issues with saving operators after creating Dynamic Group Templates
• Fixed: Various other minor improvements and fixes

• Added: Ransomware Remediation support
• Added: ESET LiveGuard Advanced for ESET Endpoint Security for macOS
• Added: Email quarantine supporting ESET Mail Security for Microsoft Exchange Server
• Added: Audit deletion and existing policy modification
• Added: Server installation support on Windows Server 2025
• Added: MySQL MariaDB ODBC driver support
• Improved: Dynamic Group Templates screen refactored to React
• Improved: Login password policy
• Improved: Static group wizard refactored to React
• Fixed: Issues with managing ESET Endpoint Security for macOS
• Fixed: Reloading computer details with active encryption ended up in error
• Fixed: Performance logs missing in the server performance report
• Fixed: Detailed information was not available on the Dashboard when MSP customer was selected
• Fixed: High memory consumption when editing policies with ESET PROTECT On-Prem installed on a Linux platform
• Fixed: Management Agent connection issues after an upgrade
• Fixed: SID column missing under Computer users
• Fixed: Login issues after product upgrade
• Fixed: Incorrect display option to enable Vulnerability & Patch Management" (V&PM not available for On-Prem)
• Fixed: Referenced license is not accessible in tasks and installers
• Removed: Support of MySQL 5.6

• FIXED: Issues with ESET Management Agent connecting to ESET PROTECT On-Prem Server 
• FIXED: Ability to enable VA/PM through solution details
• FIXED: Other minor fixes and improvements

• Added: Support for the new version of .NET (v8)
• Added: Option to skip the creation or update of AD synchronization tasks in Windows Task Scheduler
• Added: Ability to synchronize from a specific Domain Controller
• Changed: The default "Computers" group from Active Directory will now be synchronized if it is not empty
• Fixed: Resolved synchronization issues when using specific characters in Organizational Unit or Computer names

• Added: Support for a new version of .NET (v6)
• Added: AD Scanner requests credentials when executed from a different location via the command line to reschedule with a new path
• Changed: It is no longer necessary to include the token in the command line if it was previously configured

• Improved: Support reporting scanner status in cloud console

• Fixed: Bridge fails to start with a custom cache path set to the default cache path due to permissions
• Fixed: Multiple Bridge processes running after installation
• Improved: Added a setting to hide the "Access restrictions are disabled" application status
• Improved: Added an option to bypass the proxy chain for ESET Inspect communication

• Fixed: Updated the SSL to support legacy versions of the encryption certificates
• Fixed: Crash on Linux in GetSystemLanguage OSUtils method

• Added: Customizable logs directory from ESET PROTECT
• Added: Clear Proxy Cache task in ESET PROTECT
• Added: Linux support for Bridge certificate revocation
• Added: Log-sending capabilities in Watchdog
• Added: Option to automatically set access rights for the custom cache directory in ESET Bridge Policy
• Improved: Upgrade Nginx to the latest version
• Fixed: ESET Bridge Watchdog stops when ESET Bridge is restarted
• Fixed: The absolute path should be accepted when the Custom cache path is changed
• Fixed: Offline repository can't be accessed through Bridge proxy in case the "Use direct connection" fallback is disabled

• New: ESET Shell now supports commands to extract username and password from PowerShell PSCredential object or from Windows Credential manager
• Fixed: A problem where ESET Shell would crash when adding alias command with the same name as command that already exists in context

• New: Web Control support
• New: Support for Vulnerability patching logging and reports in ESET PROTECT
• New: Support for Vulnerability scan reports in ESET PROTECT
• New: ESET Shell now supports V&PM scan scheduler task
• New: Windows Group policy firewall rules being evaluated
• New: Exclusions from network isolation
• New: Support for Microsoft Windows Server 2025
• Improved: Security of interaction between UI components and password settings
• Improved: Search in advanced setup, search and highlighting of matching items
• Improved: Outlook mail plugin improvements and various issues fixed
• Improved: Auto-exclusion logging mechanism will only record the first instance of an error, preventing log overflow. Resets upon settings change or error resolution
• Changed: Advanced settings and component installation tree were consolidated and adapted to match the structure used in other ESET security products
• Changed: ESET Shell commands were adapted to the changes and consolidation of advanced settings
• Changed: ESET Shell status commands are now organized in one context and sub-context

• Changed: Font color in OneDrive logs about files sent for analysis in ESET LiveGuard is now black
• Fixed: Security vulnerability CVE-2024-11859
• Fixed: A problem where disabling configuration change logging in audit log did not take effect
• Fixed: Desktop experience Windows Server installations are now properly displaying dialog for adding performance exclusions
• Fixed: Reporting error related to automatic exclusions for MS SQL Server by fixing enumeration of MS SQL server instances

• New: SIEM exports now support TLS
• New: Microsoft 365 on-demand scan can be run on cloud mailboxes outside of hybrid environments
• New: ESET Shell now supports commands to extract username and password from PowerShell PSCredential object or from Windows Credential manager
• New: Support for Vulnerability patching logging and reports in ESET PROTECT
• New: Support for Vulnerability scan reports in ESET PROTECT
• New: ESET Shell now supports V&PM scan scheduler task
• New: Exclusions from network isolation
• New: Support for Microsoft Windows Server 2025
• New: Support for Microsoft Exchange Server CU15
• Improved: Notification mails triggered by rules will now contain all information about rule hits in one notification, instead of generating a notification for each rule
• Improved: Extented automatic exclusions to cover also %SystemRoot%\Cluster and %SystemRoot%\Temp\OICE_
• Improved: SMTP protection log extended to include logs about SPF passes and technology which accepted it e.g. ARC
• Improved: SPF fail can be overridden by the valid ARC signature, preventing unnecessary trigger of certain SPF rules
• Improved: Event log now contains information about SPF result override on the basis of valid ARC signature
• Improved: Security of interaction between UI components and password settings
• Improved: Search in advanced setup, search and highlighting of matching items
• Improved: Outlook mail plugin improvements and various issues fixed
• Improved: Auto-exclusion logging mechanism that records only the first instance of an error to prevent log overflow, now resets upon auto-exclusion setting change
• Changed: Advanced settings and component installation tree were consolidated and adapted to match the structure used in other ESET security products
• Changed: ESET Shell commands were adapted to the changes and consolidation of advanced settings
• Changed: ESET Shell status commands are now organized in one context and its sub-contexts
• Fixed: A problem, where rules with message body condition with diacritics were not being evaluated correctly

• Fixed: Security vulnerability CVE-2024-11859
• Fixed: A problem where the modification of Base64 encoded mail body in html format resulted into corrupted mail message
• Fixed: A problem where every 256th email was missing in the quarantine report

• New: Mail quarantine integration with ESET PROTECT On-Prem
• New: Quarantine reports can now be set up for administrators outside of the domain
• New: Support for On-demand Vulnerability scan for Vulnerability and Patch Management
• New: Vulnerability and Patch Management logging capability both locally and reporting to ESET
• New: Authenticated received chain verification support
• New: New macros available to use with rule "Send mail notification"
• New: RDP Access restriction feature
• Improved: Modification of body of Base64 encoded emails
• Improved: Brute force attack protection was extended to cover MS SQL and MySQL protocols
• Improved: Various Override mode modifications for better security and user experience
• Improved: Support for URL analysis in document-reference headers
• Improved: Macros available for rules are now more unified and with better explanation
• Improved: Performance improvements of agent priority setting both in GUI and ESET Shell
• Improved: Local mailbox counting in domains with multiple sub-domains
• Changed: ESET Mail Security now uses the Replay directory instead of Pickup directory on the Exchange Server to send internal notifications and reports
• Changed: Emails sent to journaling mailboxes will not be quarantined
• Changed: "Report a phishing site" was moved to setup/server for improved usability
• Fixed: Incorrect display of sender's IP address in SMTP protection logs
• Fixed: Modification of subject of phishing messages now works when detected during the on-demand scan

• Fixed: Security vulnerability CVE-2024-0353 [CVSS 7.8]

• New: Installer hard block for Operating Systems without Azure Code Signing support

• New: Rules: condition for antispam result category
• New: Rules: macro placeholders for existing antispam whitelists
• New: Scheduled on-demand scan with login credentials
• New: Dark mode added
• New: ESET Bridge support
• New: New product installer with minimal modules
• Improved: GUI redesign
• Improved: New concept of communication of pending product updates, and end user license agreement
• Improved: Optimization and performance improvements of email client protection module
• Improved: SysInspector GUI redesign
• Improved: Device control improvement
• Fixed: Attachment name rule incorrectly blocking .msg attachments
• Removed: ESET Shared local cache removed due to the EOL status
• Removed: Compatibility with Microsoft Windows Server 2008 R2
• Removed: Repair and modify options removed from product installer

• New: ESET Shell now supports commands to extract username and password from PowerShell PSCredential object or from Windows Credential manager
• New: Support for Vulnerability patching logging and reports in ESET PROTECT
• New: Support for Vulnerability scan reports in ESET PROTECT
• New: ESET Shell now supports V&PM scan scheduler task
• New: Windows Group policy Firewall rules being evaluated
• New: Exclusions from network isolation
• New: Support for Microsoft Windows Server 2025
• Improved: Security of interaction between UI components and password settings **
• Improved: Search in advanced setup, search and highlighting of matching items
• Improved: Outlook mail plugin improvements and various issues fixed
• Improved: Auto-exclusion logging mechanism that records only the first instance of an error to prevent log overflow, now resets upon auto-exclusion setting change
• Improved: Visibility of sites in on demand scan target tree, locked sites are now displayed with a "lock" pictogram
• Improved: Scan log record now more accurately informs about a locked site
• Improved: When diagnostic logging is enabled, information about inaccessible SharePoint sites is shown in event log
• Changed: Advanced settings and component installation tree were consolidated and adapted to match the structure used in other ESET security products
• Changed: ESET Shell commands were adapted to the changes and consolidation of advanced settings
• Changed: ESET Shell status commands are now organized in one context and its sub-contexts

• Fixed: Security vulnerability CVE-2024-1185

• New: Support for On-demand Vulnerability scan for Vulnerability and Patch Management
• New: Vulnerability and Patch Management logging capability both locally and reporting to ESET Protect console
• New: Support for ESET LiveGuard Advanced
• New: RDP Access restriction feature for non FW products
• Improved: Brute force attack protection was extended to cover MS SQL and MySQL protocols
• Improved: Various Override mode modifications for better security and user experience
• Improved: Extended the supported password length for SharePoint farm admin account to 256 characters
• Changed: The configuration message about the availability of elevated permissions account setup for Automatic Exclusions is now suppressed if the product was installed through the ESET PROTECT management console
• Fixed: Occasional freeze/restart issue on the first update of the Real-time protection module on specific environments
• Fixed: A problem with failing installation with parameter "…ADDLOCAL=ALL REMOVE=%component%"

• Fixed: RTP overlayfs cache not functioning
• Fixed: OS freeze occurring when CIFS disks were mounted
• Fixed: Other minor fixes and improvements

• Added: Option to disable Web Access Protection feature before product installation
• Added: Support of Live Installer in ESET PROTECT
• Added: Support of Amazon Linux 2023
• Improved: On-Access scan improvement focused on responsivity and timeout elimination
• Improved: Memory consumption of logging service
• Improved: Option to define temp directory for ICAP
• Fixed: Web Access Protection blocking localhost webpage
• Fixed: Files downloaded from quarantine are in HTML format
• Fixed: Excluded IP addresses in Web Access Protection not functional after pause and reset
• Fixed: Other minor improvement and bugfixes

• Fixed: Compilation of eset_rtp fails on Debian 11
• Fixed: Product restart after apt transaction on Ubuntu 24.04 LTS
• Fixed: Other minor issues and improvements

• Fixed: RADIUS Proxy-State attribute and Message-Authenticator overwriting in response
• Fixed: Unable to upgrade ESA via ESET PROTECT On-prem

• Fixed: Attribute for radius client cannot be saved
• Fixed: Upgrade fails on newer builds of Windows Servers in uninstall phase of prev. version
• Fixed: Installation/upgrade fails on newer builds of Windows Servers
• Fixed: Missing attributes when user from selected realm
• Fixed: Fail to start ESA service when OTP SMS Product Instance is broken on EDF

• Fixed: Wrong parse of postgrestql version for linux
• Fixed: Missing AD Attributes when User from Trusted Domain
• Fixed: SharePoint Claims
• Fixed: Change consuming users in expired license
• Fixed: AD custom action is being called when not needed which results in misleading information in installation logs
• Fixed: DB password in installation logs
• Fixed: Installer naming inconsistency
• Added: Copyright 2024

• Improved: Reduced the time taken to display the pre-boot authentication screen by 10 seconds on certain Lenovo laptops, such as the T14 Gen3 and T16 Gen2 models
• Fixed: A problem on Windows 24H2 where a user would be signed out when attempting to hibernate the system
• Fixed: A problem where the pre-boot screen would freeze on the Surface Laptop 5
• Fixed: A problem on some Dell devices where the pre-boot screen would pause before input was accepted
• Fixed: A problem where SSO would not work when resuming from hibernate
• Fixed: A problem when where RDP logins would occur twice
• Fixed: A problem where a users activation state is lost after reboot on Windows 11 24H2
• Fixed: A problem where the pre-boot SSO password would not be synchronized when the user changed their password from Windows

• New: Improved encryption speeds with hardware support for AES-NI
• Improved: Further improvements to Full Disk Encryption performance during encryption and regular use
• Improved: Now supports Direct Storage for non-encrypted directories and disks
• Fixed: A problem where MSP licenses were appearing as expired when they were not
• Fixed: A problem where, when adding to an encrypted archive, the error message was not displayed in the correct language if the disk became full
• Fixed: When starting encryption from the ESET Direct Endpoint Management plugin Safestart would fail to be initialized
• Fixed: A problem where when ESET Secure Authentication was used on an Encrypted device using an SSO login, ESA would not prompt the user for their 2FA code
• Fixed: A problem on Windows 24H2 where a system would not shutdown

• Fixed: A problem where the recovery data of TPM encrypted workstations would be invalid on the encryption server
• Fixed: A problem where Polish characters were displayed incorrectly in the UI
• Fixed: A problem where the safe start notification would not be displayed on non English standalone installations
• Fixed: A problem where Full Disk Encryption users were not added on non English standalone installations
• Fixed: A problem where after starting Full Disk Encryption the progress bar would not be displayed on non English standalone installations

• Fixed: A problem with Self Enrolment failing to automatically activate the user
• Fixed: A problem with the service not starting consistently after install
• Fixed: A problem where an error would occur when viewing a force change password event
• Fixed: A problem where a failed force key-file password change command would generate wrong error event
• Fixed: A problem where an "unable to decode JSON data" error would appear when starting FDE
• Fixed: A problem with the create an encryption key user interface, two keys might be created unexpectedly

• New: Support for generating and deploying AES256 keys. EEE Client v5.3 or newer required for AES256 support
• New: EULA is now available in standalone installer
• Changed: Email templates have been updated to improve language support
• Fixed: A problem where some registry values could be written incorrectly. This could result in the service crashing when reading the value
• Removed: Windows 7, 8, 8.1, Server 2008 R2, Server 2012 and Server 2012 R2 are no longer supported
• Removed: Changelog and Readme are no longer in the product. Changelog is available on the download page

• New: All-in-one installer will now install PHP 8.2.11
• New: Report for FDE logins on workstations
• Improved: Reports now improved run in background
• Improved: Rebranded install and login page
• Changed: Product versioning aligned with ESET versioning rules
• Fixed: Resolves some install problems all-in-one and missing SQL password
• Fixed: Issue uploading SSL certificates

• New: Used space encryption mode. Speeds up encryption and decryption by encrypting only the disk space that contains data
• New: Hardware support for AES-NI which improves encryption performance and decreases CPU load
• New: Now supports Microsoft Direct Storage for non-encrypted disks
• Improved: Further improvements to Full Disk Encryption performance during encryption and regular use such as initial encryption and R/W speeds
• Improved: Reduced the time taken to display the pre-boot authentication screen by 10 seconds on certain Lenovo laptops, such as the T14 Gen3 and T16 Gen2 models
• Fixed: A problem where when ESET Secure Authentication was used on an Encrypted device using an SSO login, ESA would not prompt the user for their 2FA code
• Fixed: A problem on Windows 24H2 where a system would not shutdown
• Fixed: A problem on Windows 24H2 where a user would be signed out when attempting to hibernate the system
• Fixed: A problem where the pre-boot SSO password would not be synchronized when the user changed their password from Windows
• Fixed: If the password age policy was set, users with SSO were incorrectly prompted to change their password when it expired. Windows password rules apply when using SSO
• Fixed: A problem where SSO would not work when resuming from hibernate
• Fixed: A problem on some Dell devices where the pre-boot screen would pause before input was accepted

• Added: Single sign-on. Users can login to their encrypted system and Windows profile using their Windows password
• Added: Disabling or pausing pre-boot authentication now leverages the Trusted Platform Module (TPM). Systems that were encrypted using the TPM and have authentication paused or disabled will be upgraded automatically
• Added: Turkish Q & F keyboard layouts to the pre-boot environment
• Improved: User interface now has rounded corners in Windows 11
• Improved: Pop-up dialogs have been improved
• Fixed: A problem where when attempting to encrypt using OPAL and TPM, if the OPAL check fails then the system will fallback to not using OPAL or TPM in the encryption process
• Fixed: A problem on Microsoft Surface devices where the system would not be able to boot after turning on Secured Core
• Fixed: A problem causing system information to be malformed which prevented the AIS service from starting
• Fixed: A problem where modules would not be updated by the EFDE installer
• Fixed: A problem where offline licenses would become deactivated after successful initial activation
• Removed: 32 bit operating systems are no longer supported

• Added: Repository load balancing support for automatic updates
• Improved: Added crash dump support for the AIS service
• Fixed: Keyboard layouts that did not adhere to caps lock rules for number keys within the bootloader. For example French and German.
• Fixed: A problem where the AIS service would crash due to insufficient local system permissions to the service control manager
• Fixed: A problem where the enter key would not move focus to the next interactable element in the bootloader

• Changed: UI updated with new logo

• Improved: Updated EULA
• Improved: UI updated with "Progress. Protected."
• Fixed: Fixed a problem where expiration dates would be shown for MSP productive licenses

• Added: Automatic update of modules
• Added: Section in the user interface to show the installed modules
• Added: Ability to open ESET Full Disk Encryption via Spotlight or Applications List
• Added: UKR, NOR, FIN, SVE, DAN languages
• Improved: Various localization improvements
• Fixed: Expired licence behaviour
• Fixed: Fixed a problem where recovery password sometimes might not be synchronized to the Protect console.

• Added: Ability to collect Virtual Disk Mount event
• Added: Ability to collect BITS Job Add File event
• Added: Reset ESET rules to default
• Added: SHA-256 support (Windows)
• Added: Show only detections that are present in any Incident
• Added: LibFuse is automatically installed
• Improved: Performance improvements
• Fixed: Various bug fixes

• Added: Exceptions to reputation allowing to kill trusted processes
• Improved: New remote terminal
• Improved: Performance
• Fixed: Various bugs

• Added: Exceptions to reputation allowing to kill trusted processes
• Improved: New remote terminal
• Improved: Performance
• Fixed: Various bugs

• Added: Ability to collect Virtual Disk Mount event
• Added: Ability to collect BITS Job Add File event
• Added: Reset ESET rules to default
• Added: SHA-256 support (Windows)
• Added: Show only detections that are present in any Incident
• Added: LibFuse is automatically installed
• Improved: Performance improvements
• Fixed: Various bug fixes

• Added: Exceptions to reputation allowing to kill trusted processes
• Improved: New remote terminal
• Improved: Performance
• Fixed: Various bugs

• Added: Exceptions to reputation allowing to kill trusted processes
• Improved: New remote terminal
• Improved: Performance
• Fixed: Various bugs

• New: ESET VPN logs added to collected targets
• New: ESET Cluster diagnostic logs added to collected targets
• New: ESET Update snapshot info added to collected targets
• New: Windows Logs (PowerShell, Terminal Services - Remote Connection Manager) added to collected targets
• New: Microsoft Defender status added to collected targets
• New: .NET Framework versions added to collected targets
• New: Group Policy settings added to collected targets
• New: Possibility to collect logs bigger than 4GB added
• Changed: ESET Inspect logs collected by default
• Changed: ESET Banking & Payment protection renamed to ESET Safe Banking & Browsing
• Changed: Category info was added to artifacts in command-line help
• Changed: On-Prem suffix added to appertaining ESET products
• Changed: Kerio targets removed
• Fixed: ESET product features name list updated
• Fixed: New ESET SysInspector is downloaded if missing
• Fixed: Correct 32bit ESET Log Collector process detection on ARM
• Fixed: Suspicious files are stored in final archive

• New: ESET Bridge logs added to collected targets
• New: ESET Vulnerability & Patch management debug logs added to collected targets
• New: ESET License data added to collected targets
• New: ESET Secure Authentication Synchronization Agent logs added to collected targets
• New: ESET Direct Endpoint Management plug-in logs added to collected targets
• New: Windows Updates extended info added to collected targets
• New: Windows prefetch files added to collected targets
• New: Windows Security event log added to collected targets
• New: Shim databases added to collected targets
• New: Suspicious files added to collected targets
• New: PowerShell history added to collected targets
• New: Collect installed certificates (only in cmd mode)
• New: Archive password protection added
• New: More precise error reporting added
• New: Some errors reclassified to warnings to continue collecting
• New: Preserve ESET Log Collector log if error occur
• Changed: ESET Full Disk Encryption logs added to default profile
• Changed: ESET Secure Authentication logs extended
• Changed: EP/ESMC/ERA shortcuts renamed to ESET PROTECT
• Changed: EI Agent renamed to EI Connector
• Changed: ScanCache target renamed to LocalCache
• Changed: Collection default mode changed to "original binary from disk"
• Fixed: Support for new ESET Quarantine format
• Fixed: Resizing window doesn't move the window
• Fixed: Reading console application output and writing in console mode
• Fixed: SysInspector collection failed
• Fixed: Support for downloaded localized SysInspector application

• New: ESET Banking & Payment protection logs added to logs collection
• New: EPNS diagnostic logs added to diagnostic collection
• New: NAF quarantine diagnostic files added to quarantine collection
• Changed: Renamed EI Connector (EI Agent) configuration files added to EI collection

• Improved: New user interface
• Added: Tree view of running processes, network connections and important registry entries
• Added: History of recent logs
• Added: Preserving user layout preferences
• Added: Command line for running processes
• Added: Dark mode
• Added: File association for log files
• Updated: Modules with the latest improvements
• Removed: Service Script functionality
• Removed: Compare Logs functionality

• Added: Dumping of WMI scripts
• Fixed: Various localization, documentation and functional bugs

• Changed: Updated End User License Agreement
• Improved: Copying to clipboard
• Fixed: Various localization and functional bugs

• Fixed: Minor bugs related to Periodic scan functionality

• Fixed: crash behavior during update download

• New: Branding visuals
• New: Visual improvements (change of fonts, etc.)
• New: Banner format
• Removed: Upsell screens

• Improved: Support for HTTPS connections to ESET update servers
• Improved: Handling of UNICODE filenames in logging
• Fixed: Inconsistencies in logging information
• Fixed: Support issues related to Microsoft Windows Server 2012/2016
• Various other minor improvements and fixes

• Added: Logging into a file
• Added: Command line parameters logLevel, logFilename and logIntoStandardPath
• Changed: Command line parameter names are case-insensitive
• Changed: Command line parameter 'repositoryServer' has implicit value - AUTOSELECT
• Fixed: Offline license file generated in ESET PROTECT Hub not functional
• Removed: Support for 32bit versions of MirrorTool