Skip to main content
All CollectionsAnnouncementsAnnouncements and archiveArchive
Security Vulnerability - 4.3/4.2.1/4.1.1 - Workspace365
Security Vulnerability - 4.3/4.2.1/4.1.1 - Workspace365
Updated over a week ago

Dear Partner / Customer,

We have detected a security vulnerability in a third-party dependency that Workspace365 uses. The relevant CVE's are: CVE-2024-21319 and CVE 2024 0056. We have not detected any exploitation within our hosted environment.


For Self-Hosted Partners, version 4.3 will include the patch. We have also patched the previous versions 4.1 and 4.2. The downloads for versions 4.1.0 and 4.2.0 have been taken offline and new articles have been published for versions 4.1.1 and 4.2.1. The download article for version 4.3 will be published on Tuesday the 16th of January. We strongly recommend upgrading to a patched version as soon as possible.

For questions, please submit a ticket to our support team.

Yours sincerely,

The Workspace365 team

Related Articles
HotFix 3.67.1 - Security Vulnerability - Workspace365
HotFix - Security Misconfiguration - Workspace365
HotFix 3.63.1 - Security Misconfiguration - Workspace365
Self-hosting change V3.64: Full-text search for Knowledge articles
Update for self-hosted partners: migrate to .Net Core 6 from Workspace release V3.55.0
Did this answer your question?