Hi all - ETA on QID for CryptoAPI?
See blog post: Microsoft Windows CryptoAPI Spoofing Vulnerability (CVE-2020-0601)
We are working on this with highest priority. The detection (QID) will be out towards the end of today.
Please see the January 2020 Patch Tuesday blog post. We'll release additional detail on the Crypto API vulnerability later today.
its only about 3 hours since public release. I'd prefer Qualys do good QA before publishing QIDs.
also a good read: cyber.dhs.gov - Emergency Directive 20-02
The post states 91595 released by Qualys. I get zero results when I search the knowledge base for either CVE or QID references. Platform is EU2. Any update on when EU will get the detection capability?
Hi Chris, You need to compare the signatures version in the blog post against the signatures version on your shared platform (e.g. EU2). The ETA is today, so if your platform is not on the version listed in the blog post, it should be at some point later in the day. Robert
Thanks Robert..... My usual look and jump approach.
Retrieving data ...