Release Notes

Issues fixed in 16211

• There was a problem in collecting data for certain tables in IBM Websphere MQ, Rabbit MQ, VMWare ESX and GlassFish monitors when the table name contained special characters.(Broken since v16200)
• In SAP CCMS monitor, there was a problem in displaying data for custom attributes that contained special characters in their names. (Broken since v15570)
• There was an EOF issue while adding Server monitor via SSH mode.
• In Real User Monitor, the Day Picker option was not working properly. (Broken from Base version)
• In Monitor Groups, while un-assigning existing custom field values of type 'List', it wasn't getting updated correctly.(Broken since v14810)
• There was an issue in displaying Telnet Child monitors in the Telnet EUM parent monitor as the table name had special characters. (Broken since v16200)
• Users with the Operator role were not able to manage, Unmanage and Reset monitors from the Bulk Configuration view when more than 25 monitors were selected.(Broken since 15520)
• In Database Query monitor, Edit and Update were not working properly. (Broken since v16200)
• There was an issue in executing actions when more than 76 monitors were selected from Alarms tab. (Broken since v15500)
• There was a breakage in Analytics Plus integration due to the ShowPolledData API.(Broken since 15990)
• In OpManager integration, there were issues in accessing the data of network devices listed in the Bulk Config View, HeatMap and Alarm Summary widget. (Broken since v16190)
• There was an issue while clicking monitor links for Network Devices in "Bulk Config View".(Broken since 16190)
• Bulk import CSV option was not working properly in the Chrome Browser as the file type wasn't recognized.
• The Monitor Error Mail option under Settings -> Alarms/Actions didn't work when multiple Email IDs were provided.(Broken since 15620)
• The Edit Tabs option under the User profile icon was broken for User, Operator and Manager roles. (Broken since v16190)
• In Alarm Summary Widget, there was an error while clicking any monitor group name.(Broken since 16220)
• When more than 16 threshold profiles were deleted from Admin server, they were not synced in the Managed server. (Broken since v15800)
• Mail server configuration was not working properly when invalid values were provided for SMTP server name, SMTP port and connection URL fields.(Broken since 15200)

Issues fixed in 16210

• On enabling Easy Upgrade, there was a problem in About page while clicking Latest Compatible Download link. (Broken since 16170)
• On enabling Two Factor Authentication, there was an issue in receiving the Login page OTP via mail.(Broken since 16190)
• There was a problem in starting Applications Manager after PPM upgrade (from 15006 to 16092).

Issues fixed in 16200

• In Site24x7 monitors, there was an issue in fetching chart data when the data count exceeded the string array size.
• There was a problem in data collection of VMware Connection Broker Monitor when machines were assigned with Active Directory users. (For Version 8 only)(Broken Since 16030)
• In MSSQL monitor, "No Data Available" message was displayed while trying to collect database metrics for Database tab.(Occurs in SQL 2008 version only)(Broken Since 15820)
• There was a problem in accessing the alarm history link for Windows Performance Monitor. (Broken since 16130)
• In JBoss application server monitor, newly deployed application and un-deployed application information was updated only when the server was restarted.
• There was an issue while executing Virtual Machine actions manually in foreign language builds.
• In Settings tab, there was a problem in adding SSH credential profile when the private key value's length exceeded 2000.
• In Alarms tab, there was an issue in creating PDF report.
• There was a problem in creating SNMP Trap action when invalid OID values were present.
• In Reports tab → ERP, "More" option was not working properly.

Issues fixed in 16190

• OPM Plus users were experiencing slowness in APM Plugin.
• Health and Availability status of MongoDB monitors were not updated even when the servers were unreachable. (Broken since v16000)
• In Enterprise Edition, there were sync issues between Admin and Managed servers when the Admin Server hostname contained special characters. (Broken since v15720)
• In OAuth, Scope field value of Client credential and Resource owner grant types are now stored in the database.

Issues fixed in 16180

• JMX/SNMP dashboard page was incorrectly shown upon enabling/disabling reports for custom attributes in SAP CCMS monitor. (Broken since v15600)
• Bug reporting page was incorrectly shown when custom attributes were added from SAP CCMS monitor. (Broken since v16140)
• JMX/SNMP dashboard page was incorrectly shown upon deleting custom attributes in SAP CCMS monitor. (Broken since v15600)
• PowerShell prerequisites missing error was shown for Microsoft 365 monitors due to the non-availability of Test-NetConnection command in some Windows servers.
• Business Hour based thresholds were not working properly for users with non-English language and locale machine installations.
• DataTables warning Ajax error popup was shown upon accessing the alarm details of JMX Notification in 'Alarms' tab.
• Monitor name was not shown for the replaceable tag $MONITORNAME while configuring email action for tabular attributes. (Broken since v14830)
• Error page was shown upon accessing the Monitor, Monitor Groups and Add-On Settings pages after restart due to a failed attempt in integrating SDP Cloud using invalid URL.
• There was an issue with editing and updating the JMX/SNMP dashboard monitor from the 'Monitor Details' page.
• In Enterprise Edition, some unsupported action types were wrongly listed while configuring alarms for attributes in Admin server.

Issues fixed in 16170

• There was an issue while adding the REST API monitor via REST API when the non-mandatory parameters (such as 'Should contain', 'Should not contain') are not provided.
• Website content monitor failed to report webpage defacement changes when the webpage response contained INVALID XML characters.
• In SAP HANA Multitenant system, there was an issue in fetching Disk Utilization and Disk Volume data.
• In the add monitor page, discovery of 'All services' for a specific host wasn't working properly.(Broken since 14460)
• 'Invalid cluster name' error occurred while updating Redis, Cassandra and Zookeeper monitors.
• For Linux monitors in SNMP mode, disk name was added as null.
• User was unable to create or edit new profile in APM Insight Agent Configuration profile.(Broken since 15990)
• The relevant data in the mapped table was not getting deleted, in the mentioned cases:
• Upon deleting an APM Insight monitor. (Broken since 15910)
• Upon deleting any scaled down APM Insight cloud monitor in autoscaling mode. (Broken since 15910)

Issues fixed in 16160

• In ADDM, default credentials were mapped for MS SQL monitors instead of user's credentials.(Broken since v14560)
• The URL linked to 'Reported by Applications Manager' in the APM Plugin email alerts was redirected to an incorrect web address.
• There was an error in displaying Free memory and Total memory metric values of MongoDB monitor running on Linux servers.
• There was a problem in updating the hostnames of child monitors when it was updated using the 'Update Hostname/IP' option in Bulk Config view.
• Applications and servers were discovered even when the Discover unknown devices during ADDM discovery option was not enabled.(Broken since v15870)

Issues fixed in 16150

• There was an issue with logging in using default credentials when Applications Manager was installed on XenServer VM in Linux.
• In Real Browser Monitor (RBM), agents were not listed in the transaction recorder tool for Chrome extension in non-English installations of Applications Manager.
• Basic Authentication was not working in Real Browser Monitor (RBM).
• There was an issue in syncing data from Applications Manager to Analytics Plus due to incorrect configuration of ListMonitor REST API. (Broken since v15780)
• In Enterprise Edition, there were sync issues between Admin and Managed servers after service pack upgrade. (Broken since v15720)

Issues fixed in 16140

• In VM monitors under VMware ESX/ESXi, service availability status changes, updated in the target VM server were not reflected in APM.
• In Settings tab, enabling Receive Ping Response resulted in alert generation for Linux monitors on every poll.
• In Admin server, there was an error in Configure Alarms page while trying to associate threshold via Monitor Type template for an attribute, without changing monitor type drop down.
• There was an error while executing Container Actions in foreign language builds.
• User unable to create or edit actions with other language characters in display name.
• Removed support for MySQL database backend in Service Pack installations due to security reasons.

Issues fixed in 16135

• There was a problem in saving the SMS gateway configuration when the configuration included more than one header.(Broken Since 15470)
• There was a problem while adding URL sequence monitor through HAR import option when the file extension's name exceeded 10 characters.(Broken since v14670)
• In Monitor Group page, structural changes to the Business View were not getting saved properly.(Broken since v16130)
• There was a problem in performing manage/unmanage/ unmanage & reset actions for Windows Services in both WMI and SNMP mode.(Broken since v15550)
• Support for data collection through MSAL authentication in Azure monitor.
• There was a problem in displaying third level attributes in Enable Reports and Trend Analysis Reports page for SQL anywhere and Nginx plus monitors.(Broken since v15900)
• XML External Entity (XXE) Vulnerability in SOAP Response of Web service monitor has been fixed. (Reported by Da22le)
• There was a problem in syncing data between admin and managed servers while users upgraded from versions below 15430 to versions upto 16320 whenever an unsupported encoded character was encountered in the Enterprise edition sync key.

Issues fixed in 16134

• In Enterprise Edition, there was a slowness in syncing data between Admin and Managed servers with MS SQL DB backend when direct sync was enabled. (Broken since v13990)
• In Enterprise Edition, there was an issue with syncing data between Admin and Managed servers when the monitor's data collection error message contained comma symbols. (Broken since v15970)
• There were issues in upgrading PostgreSQL database due to insufficient DB user permissions.
• There was problem in syncing proxy setting details from OPM to APM Plugin when 'No Proxy For' option was enabled. (Broken Since v15770)
• In vCenter Discovery, there was a problem with Resource Pools being repeatedly discovered.

Issues fixed in 16133

• Users with the Operator role were not able to manage, Unmanage and Reset monitors from the Bulk Configuration view when more than 25 monitors were selected.(Broken since 15520)
• The Compare Reports option under Attribute reports wasn't working when more than 10 monitors were selected.(Broken since 15570)
• In SAP CCMS monitor, there was a problem in displaying data for custom attributes that contained special characters in their names. (Broken since v15570)
• The Monitor Error Mail option under Settings → Alarms/Actions didn't work when multiple Email IDs were provided. (Broken since 15620)
• In Alarms tab, there was an issue in creating PDF report.(Broken since 15500)
• There was an issue in bulk import option of server monitors in SNMP mode. (Broken since v16050)
• When more than 16 threshold profiles were deleted from Admin server, they were not synced in the Managed server. (Broken since v15800)
• In Monitor Groups, while un-assigning existing custom field values of type 'List', it wasn't getting updated correctly.(Broken since v14810)
• There was an issue in executing actions when more than 76 monitors were selected from Alarms tab. (Broken since v15500)
• In Bulk import, there was an issue in configuring the Error if response code field for URL monitors.
• There was an issue while executing Virtual Machine actions manually in foreign language builds.(Broken since 15470)
• Mail server configuration was not working properly when invalid values were provided for SMTP server name, SMTP port and connection URL fields.(Broken since 15200)
• In APM Plugin build, Under Reports → ERP → More option wasn't working. (Broken since 15570)
• In Settings tab, there was a problem in adding SSH credential profile when the private key value's length exceeded 2000.

Issues fixed in 16132

• In Enterprise Edition, there were sync issues between Admin and Managed servers when the Admin Server hostname contained special characters. (Broken since v15720)
• Health and Availability status of MongoDB monitors were not updated even when the servers were unreachable. (Broken since v16000)
• There was an issue in syncing alerts to Admin server when the alert message length exceeded the restricted limit.
• There was a problem in starting Applications Manager after PPM upgrade (from 15006 to 16092).
• There was an issue in restoring backend database using RestorePGSQL script files. (Broken since v16000)

Issues fixed in 16131

• There was an error while executing Container Actions in foreign language builds.
• User was unable to create or edit actions when display name contained other language characters.
• There was an issue in syncing data from Applications Manager to Analytics Plus due to incorrect configuration of ListMonitor REST API. (Broken since v15780)
• In Enterprise Edition, there were sync issues between Admin and Managed servers after service pack upgrade. (Broken since v15720)
• There was an issue with logging in using default credentials when Applications Manager was installed on XenServer VM in Linux.
• In Settings tab, enabling Receive Ping Response resulted in alert generation for Linux monitors on every poll.

Issues fixed in 16130

• In Windows Performance Counter monitor, special characters were not restricted for Hostname parameter. (Broken since 15500)
• If the user cancels the operation while adding attributes in the SNMP/Network monitor, unauthorized access error was returned. (Broken since 15600)
• In the View threshold page -→ Used By option, deleting the configuration resulted in redirection to Intro page. (Broken since 15500)
• There was an error while adding Managed server from Admin server when Managed Server's name contained special characters.
• OPERATOR users were unable to create dashboard for VCenter and its Sub-Groups.
• In the Business view, there was an issue in changing the position of nodes and adjusting the zoom level when Business View name contained special characters. (Broken since 15520)
• APM Insight's Performance Polling page wasn't working in Chinese builds. (Broken since 15620)
• Attribute history report generation of web services monitor failed when the operation name contained special characters.
• In the French build, the option to send Attribute report via email wasn't working.
• While saving Performance polling option for Script monitor, page was redirected to the Home page. (Broken since 15520)
• User was unable to switch to Classic view from Mobile view. (Broken since 15520)
• In the event of a license expiry, there was an issue in unmanaging monitors when All Monitors and EUM Monitors options were checked.
• While adding monitor for VMWare Virtual Infrastructure, RHEV, OVM or VMware Horizon Discovery, page was redirected to index page, due to improper error handling.
• In Websphere MQ monitor:
  • In the Services tab, service actions were not working properly.
  • In the EventLog tab, search option wasn't working and there was no data about status.

Issues fixed in 16120

• In the Amazon ECS Monitor, if an ECS cluster had a large number of services, tasks, and container instances, they were not being discovered correctly.
• For Custom Monitor and Script Monitor, the table header columns have now been sorted in ascending order.
• $RCAMSG_PLAINTEXT and $SHORT_MESSAGE replaceable tags were not working properly on Error and Health Attribute alerts.

Issues fixed in 16110

• Error occurs while updating the downtime reason for a monitor which is down for more than a day.
• Creating Alarm escalation rule fails while using delegated admin role.
• While searching with IP address in the Search bar using "Search in all" filter shows irrelevant monitors in search results.
• While adding or collecting the metric for Windows server monitor in WMI mode of monitoring, APM calibrated a high level authentication, to establish a remote connection using the VBscript for Security Purpose as per the Microsoft KB5004442.
• In the Monitors tab dropdown, the World map view gets redirected to a blank page.(Broken since 16090)
• Monitor addition fails while adding version >= 13003 of Service desk plus as a monitor.
• Occurance of Polling delay, while collecting job details in MS SQL monitor.

Issues fixed in 15904

• In Enterprise Edition, there were sync issues between Admin and Managed servers when the Admin Server hostname contained special characters. (Broken since v15720)
• There was a problem in viewing the monitor details of Managed servers from the Admin Server. (Broken since 15520)

Issues fixed in 15903

• In APM Insight, there was a problem in creating New Configuration profiles.
• There was an error while executing Container Actions in foreign language builds.
• There was an issue with logging in using default credentials when Applications Manager was installed on XenServer VM in Linux.
• In Enterprise Edition, there were sync issues between Admin and Managed servers after service pack upgrade. (Broken since v15720)
• There was an issue in syncing data from Applications Manager to Analytics Plus due to incorrect configuration of ListMonitor REST API. (Broken since v15780)
• There were issues in starting Applications Manager when the user removed 'CREATE ANY DATABASE' privilege after first restart in MS SQL backend database.
• User was unable to create or edit actions when display name contained other language characters.
• In Settings tab, enabling Receive Ping Response resulted in alert generation for Linux monitors on every poll.

Issues fixed in 15902

• While importing user group in AD domain, User and Manager login roles were wrongly assigned, for the created user during the first login.
• There were issues in applying Alarm Template to newly-added monitors. (Broken since v15901)
• There was a delay in triggering monitor-level error alarms for Server monitors.
• Unable to Create Mbean and Trap Actions in Japanese Build.
• While generating dashboard report via scheduled reports for unsupported widgets in PDF, blank space was displayed in place of the widgets, which is now replaced with a message with the list of unsupported widget types present in chosen dashboard.
• Optimization done in Attribute History report page to reduce initial loading time.
• While adding URL monitors using Bulk Import option, default values were being accepted instead of customised values, during monitor creation.
• There was an issue with Windows version being wrongly appended as 2000 in default monitor.
• While adding or collecting the metric for Windows server monitor in WMI mode of monitoring, APM calibrated a high level authentication, to establish a remote connection using the VBscript for Security Purpose as per the Microsoft KB5004442.
• When multiple Real Browser Monitors (RBM)poll at a time, EUM Agent sends performance metrics response of all RBM monitors to AppManager in XML, leading to display of single monitor performance metrics data for all the other RBM monitors.
• Alert message was also sent as attachment when Outlook mail ID was used as 'To address' while configuring Email action for attachment-based mail alerts.
• $RCAMSG_PLAINTEXT and $SHORT_MESSAGE replaceable tags were not working properly on Error and Health Attribute alerts.
• While searching with IP address in the Search bar using "Search in all" filter shows irrelevant monitors in search results.

Issues fixed in 15901

• Failure in importing AD user when the display name of User is having any special character.
• SSL certificate was not used by the Applications Manager server although the same was uploaded successfully under Settings → Manage Certificates. (Broken since v15500)
• Failure in Export PDF/CSV and Send Email options for Disk Partition report of Capacity Planning.
• There were issues in collecting data for some metrics of newly added MS SQL monitors although the default polling status was set to 'Collect data during every poll' for all monitors under Admin → Performance Polling → MS SQL.
• In Enterprise Edition, data inconsistency was found in the API response when ListServer REST API was executed from Admin and Managed servers.
• Redirection to Home page occurs for some pages, while clicking Upload File link.
• There was an issue with logging into the Web Transaction Recorder for domain users.(Broken since v15520)
• While logged in as Operator, page gets redirected to Intro tab during alarm configuration for .NET monitor.
• There was an issue with adding the Windows Cluster monitor when the option 'Discover and Monitor Nodes' was enabled. (Broken since v15780)
• In Enterprise Edition, Process and Service templates were not synced from Admin server to Managed server. (Broken since v15800)
• Deletion of NetworkAdapter for Windows server monitor caused redirection to Intro page. (Broken since 15550)
• Windows Eventlog Rules were not being synched from Admin to Managed server. (Broken since 15800)
• In Availability, Health and Alarm Summary widget, page was incorrectly redirected to homepage upon clicking the monitor count of Critical/Clear alarms
• Successive addition of dependent devices in Configure Alarm page, causes redirection to Intro page.
• Incorrect query execution lead to increased data file size of MS SQL backend databsase.
• Delay caused in association while using Alarm template in case of a large monitor count.
• Unable to apply license for language builds other than English. (Broken since 15540)
• Failure in auto sync of existing OneAuth from Admin to Manage server. (Broken since v15710)
• Error was shown upon adding the REST API monitor when the URL contained whitespace or asterisk (*) symbol.
• Clicking on Ruby/Node JS monitors under APM Insight, redirected to an error page
• Delay in accessing Attribute Reports page is fixed.
• Error occured in associating Threshold from Admin server to Managed server.
• Clicking on Applications report and At a Glance report under the Monitor group actions for any Monitor group, redirected to Intro tab.
• There was an issue with executing an Availability report schedule for Monitor Group when more than 10 resources were selected with 'Send consolidated report' option enabled, under Settings → Schedule Reports. (Broken since v15570)
• Generating Health and Availability report in Web application group redirected to Home page.
• In MS SQL monitor, clicking on selective database to view the last seven days report, redirected to Home page.(Broken since v15520)
• User or Manager roles were missing in Domain User Group page.
• Faced failures in the option to perform Easy Upgrade.
• A random port/RMI port opened in the system by Applications Manager triggered an Antivirus scan, leading to an Out of Memory issue in the tool.

Issues fixed in 15980

• Windows Eventlog Rules were not being synched from Admin to Managed server. (Broken since 15800)
• Deletion of NetworkAdapter for Windows server monitor caused redirection to Intro page. (Broken since 15550)
• Failure in displaying proper error message for Windows monitor in Admin server, while trying to add existing monitor without selecting OS.
• Error in enabling Jobs monitoring for MS SQL Server, via the provided 'Click here' link, which instead redirects to Intro tab. (Broken since 15620)
• Unable to apply license for language builds other than English. (Broken since 15540)
• Trying to update Hostname using script resulted in receiving an exception.

Issues fixed in 15970

• There were issues in collecting data for some metrics of newly-added MS SQL monitors although the default polling status was set to 'Collect data during every poll' for all monitors under Admin → Performance Polling → MS SQL.
• In Oracle monitor, session information for locks were still shown under 'Sessions waiting for a lock' and 'Sessions holding a lock' in 'Locks' tab, although the blocked sessions were cleared on Oracle DB server.
• In Real Browser Monitor (RBM), network performance data was not shown for Chrome playback.
• There was an issue with adding LDAP server monitor without credentials from Admin server.
• There was an issue with adding the HAProxy monitor when the HAProxy server's page response did not contain the header "HAProxy".
• Page was wrongly redirected to homepage upon updating the PHP monitor which was added with SSL enabled.

Security issues

• No rate limiting for Authenticator rest-api url is fixed. (Reported by Rahul Srivastava)

Issues fixed in 15960

• SAP Server monitor faced parsing issues in collecting data for the attribute 'Last Run Date and Time' of Background jobs.
• Associating monitor with Monitor group failed during initial product startup, in some uncommon cases of MySQL/MSSQL backends.
• Clicking on Ruby/Node JS monitors under APM Insight, redirected to an error page.

Issues fixed in 15950

• Clicking on Applications report and At a Glance report under the Monitor group actions for any Monitor group, redirected to Intro tab.

Issues fixed in 15940

• Error was shown upon adding the REST API monitor when the URL contained whitespace or asterisk (*) symbol.

Issues fixed in 15930

• In Availability, Health and Alarm Summary widget, page was incorrectly redirected to homepage upon clicking the monitor count of Critical/Clear alarms
• SSL certificate was not used by the Applications Manager server although the same was uploaded successfully under Settings → Manage Certificates. (Broken since v15500)

Issues fixed in 15920

• In Windows monitor, there was a mismatch in the CPU Utilization value shown in the monitor's overview page and the Breakup of Process Information report sent with the alert mail.
• An error popup was shown upon accessing the 'Alarms History' page from monitor dashboard.

Issues fixed in 15900

• Nginx Plus attributes were mistakenly listed in Nginx monitor reports.

Issues fixed in 15512

• There were issues in performing backup of large PostgreSQL backend database due to timeout error during script execution.
• There were issues in generating attribute report for some Windows monitors in 'Reports' tab. (Broken since v15270)
• In MS SQL monitor, an error popup was shown upon accessing the 'Session' tab whenever there was no data available under Session Details.
• In MySQL monitor, bug reporting page was wrongly shown upon clicking any configuration information under 'Configuration' tab.
• In JMX Applications monitor, page was incorrectly redirected to homepage upon executing the MBean action from monitor dashboard. (Broken since v15500)
• Blank page was shown upon updating the settings for database servers under Settings → Performance Polling → Database servers.
• Blank page was shown upon updating the password during password expiry scenario. (Broken since v15470)
• Access restriction page was shown upon clicking the 'View Audit Logs' option under 'Monitor Group Actions' in a Monitor Group for Delegated Admin users. (Broken since v14570)
• Alarms were not filtered upon choosing a monitor under 'Filter by Monitor Type' dropdown in 'Alarms' tab. (Broken since v15500)
• In 'Alarms' tab, there were issues in executing ticket action after ServiceDesk Plus MSP (SDP MSP) was integrated. (Broken since 15500)
• Bug reporting page was wrongly shown upon clicking the 'Create Global Trap Action' option for SNMP Trap Action under Actions → View Actions. (Broken since v15300)
• Access restriction page was shown upon clicking over an Event value under 'SLA Statistics' in 'SLA' tab for users with 'Manager' role. (Broken since v15500)
• There were issues in generating attribute report for some Windows monitors in 'Reports' tab. (Broken since v15270)
• In Enterprise Edition Admin server, an error message was shown upon accessing the 'Monitor Summary' page (under Settings → Support → Monitor Summary) when the Managed server name contained '.' symbol. (Broken since v15000)

Issues fixed in 15570

• In MS SQL monitor, an error popup was shown upon accessing the 'Session' tab whenever there was no data available under Session Details.
• In JMX Applications monitor, page was incorrectly redirected to homepage upon executing the MBean action from monitor dashboard. (Broken since v15500)
• 'Filter Monitor Groups' option was not working for Capacity Planning under 'Reports' tab.
• Incorrect value was shown for the replaceable tag '$DATE' in the 'Alarm Details' page upon executing the 'Log a ticket' action.
• Two-Factor Authentication (TFA) was not working for users upgrading from v15510 to the latest version.
• Access restriction page was shown upon clicking over an Event value under 'SLA Statistics' in 'SLA' tab for users with 'Manager' role. (Broken since v15500)
• In ServiceDesk Plus (SDP) On-Demand integration, request template data was not shown upon selecting an Incident Template from the dropdown in 'Log a ticket' action page.
• In Enterprise Edition, MS SQL actions for Database, Jobs, Users and Server Configuration were not shown in the Admin Server irrespective of the permissions set under Settings → User Management → Permissions.

Issues fixed in 15550

• In MySQL monitor, bug reporting page was wrongly shown upon clicking any configuration information under 'Configuration' tab.
• There was an issue in adding Linux monitor via Bulk Import using Credential Manager when Public Key Authentication was enabled while adding the credential details.
• Alarms were not filtered upon choosing a monitor under 'Filter by Monitor Type' dropdown in 'Alarms' tab.
• Annotations were not shown for an alarm upon adding them from 'Alarm History' page and 'Monitor by Status and Downtime' widget. (Broken since v15520)
• In Settings → Threshold & Anomalies, there was an issue with creating Anomaly Profile based on Custom Expression whenever parantheses were used in the expression.
• There were issues in generating attribute report for some Windows monitors in 'Reports' tab. (Broken since v15270)
• In Reports → End User Monitoring(EUM), changing the time period in 'At a glance' report redirected to homepage for EUM monitors. (Broken since v15250)
• Graphs were not aligned properly with their corresponding headings upon exporting the 'At a glance' report into a PDF file.
• Timestamp and runtime of the generated report was not shown in the Availability percentage report upon exporting into a CSV file.
• Upon updating the host details for 'Execute program' action created with Script Location as 'Remote Server', the page was incorrectly redirected to homepage on submit.
• Upon clicking over the 'Configure Alarms' option for attributes from the monitor's dashboard page, the page was incorrectly redirected to homepage for users with 'Operator' role. (Broken since v15520)
• In URL Sequence monitor, page was incorrectly redirected to homepage upon clicking over any URL in the monitor details page. (Broken since v15520)
• In ServiceDesk Plus MSP (SDP MSP) integration, creating a 'Log a ticket' action based on Credential incorrectly redirected to homepage on submit. (Broken since v15470)
• Search bar was not working for users with APM Plugin installations. (Broken since v15520)

Issues fixed in 15540

• In MS SQL monitor, blank page was shown upon selecting 'All Jobs' from the dropdown while viewing the history of failed status for the last 24 Hours under 'Jobs' tab.
• In MS SQL monitor, access restriction page was shown upon clicking the Edit icon under 'Enable/Disable advanced options' in 'Configuration' tab for Delegated Admin users.
• Access restriction page was shown upon clicking the 'View Audit Logs' option under 'Monitor Group Actions' in a Monitor Group for Delegated Admin users.
• There was an issue with updating the polling interval for JMX applications using the 'Update Polling interval' action from Bulk Configuration View.
• Alert mail was not triggered when the URL's availability went down, although the option 'Check URL availability' was enabled under Settings → Availability Settings.
• In Enterprise Edition Admin server, there was an issue in associating action for monitor's health and availability when there were no threshold profiles present under Configure Alarms.

Issues fixed in 15530

• In Real User Monitor (RUM), boundry was marked incorrectly for India map in 'Summary Report - World View'.
• In Directory monitor, there was an issue with filtering files in Windows directory based on Last Modified Time and Creation Time.
• In ADDM, duplicate monitors were added whenever the resources were discovered using the 'Discover' option.
• In ADDM, there were issues in discovering and adding the manually-deleted applications whenever the 'Discover and Add' option was used.
• Blank page was shown upon updating the settings for database servers under Settings → Performance Polling → Database servers.
• In 'Alarms' tab, there were issues in executing ticket action after ServiceDesk Plus MSP (SDP MSP) was integrated. (Broken since 15500)
• Error message was shown when the Alarm Summary widget was added in a newly-created dashboard and published.
• In OAuth Provider, access token was not refreshed after expiry for 'Client Credentials' grant type under Settings → OAuth Provider.
• There was an issue in saving the SNMP Trap Listener when the Trap OID ended with '.*' characters for SNMP Trap version v3.
• There were issues in saving the default Agent Configuration Profile settings for APM Insight applications. (Broken since 15480)
• In Enterprise Edition Admin server, an error message was shown upon accessing the 'Monitor Summary' page (under Settings → Support → Monitor Summary) when the Managed server name contained '.' symbol.
• In Enterprise Edition, there were issues in associating actions with Warning severity to monitors in Managed servers when applied from Admin server through Monitor Group Alarm Template.

Security Issues

• CVE-2022-23050 : Insecure file upload by an authenticated admin user is fixed.

Issues fixed in 15511

Security Issues

• CVE-2022-23050 : Insecure file upload by an authenticated admin user is fixed.

Issues fixed in 15510

• In Webpage Analyzer monitor, there were issues in collecting data when proxy was enabled for the monitor.
• There were issues in loading the data for Monitors by Status & Downtime widgets in web client.
• Alarms were not reset upon providing the Windows service Resource ID as input in UnmanageAndResetMonitor REST API.

Issues fixed in 15500

• In RHV monitor, incorrect value was shown for CPU Utilization under 'Overview' tab.
• In Active Directory monitor, the health of the monitor was not affected during authentication failures.
• Bug reporting page was incorrectly shown when 'vCenter' monitor type was chosen from the dropdown in Add Monitor page.
• Access Restriction page was shown upon accessing the 'View Actions' page for 'Operator' and 'User' roles. (Broken since v15470)
• In ADDM, incorrect date was shown after the discovery was scheduled weekly/monthly under Admin → Add/Discover → Network Discovery.
• In 'Reports' tab, there were issues in displaying graphs for some attributes when the report was generated for users with 'Operator' role. (Broken since v15000)
• In Schedule Reports, the Monitor Group Status was not shown properly in Critical Snapshot report when the status was clear.
• In SMS Gateway, the Account Type functionality was working incorrectly for Clickatell accounts.

Windows monitoring issues:

• There were issues in adding Scheduled Tasks for users with Chinese language OS.
• There were issues in unmanaging a service under 'Service Details' in 'Overview' tab. (Broken since v15370)
• There was an issue in adding the monitor when the username contained '!' symbol.

Security Issues

• CSRF vulnerability in "Threshold - CSV" module is fixed. (Reported by Rahul)

Issues fixed in 15481

• In Windows monitor, there were issues in unmanaging a service under 'Service Details' in 'Overview' tab. (Broken since v15370)
• In Webpage Analyzer monitor, there were issues in collecting data when proxy was enabled for the monitor.
• Bug reporting page was incorrectly shown when 'vCenter' monitor type was chosen from the dropdown in Add Monitor page.
• Blank page was shown upon updating the settings for database servers under Settings → Performance Polling → Database servers.
• Access Restriction page was shown upon accessing the 'View Actions' page for 'Operator' and 'User' roles. (Broken since v15470)
• There were issues in creating/modifying actions when the display name contained non-English characters. (Broken since v15370)
• While creating a Java action under Settings → Actions, the page was incorrectly redirected to homepage on submit when the display name contained non-English characters.
• In 'Reports' tab, there were issues in displaying graphs for some attributes when the report was generated for users with 'Operator' role. (Broken since v15000)
• There were issues in loading the data for 'Monitors by Status & Downtime' widgets in web client.
• In APM Insight, there were issues in saving the Agent Configuration Profile settings under Settings → APM Insight Agent Configuration Profiles. (Broken since 15480)

Issues fixed in 15402

• In RHV monitor, incorrect value was shown for CPU Utilization under 'Overview' tab.
• In Linux monitor, there were issues in collecting data when a user-defined port was configured while adding the monitor in SSH mode.
• In Webpage Analyzer monitor, there were issues in collecting data when proxy was enabled for the monitor.
• Bug reporting page was incorrectly shown when 'vCenter' monitor type was chosen from the dropdown in Add Monitor page.
• There were issues in removing the monitors from monitor group in 'Associate Monitor' page. (Broken since v15340)
• In Configure Alarms, dependent device configurations were wrongly removed upon removing the threshold configurations for the attributes.
• There were issues in creating/modifying actions when the display name contained non-English characters. (Broken since v15370)
• There were issues in adding monitor groups for APM Plugin installations. (Broken since v15400)
• There were issues in creating ticket action and to save ServiceNow integration settings when APM Plugin was accessed from OpManager GUI.

Issues fixed in 15480

• In MS SQL monitor, data collection was occurring for DBCC CheckDB and DBCC Index metrics and their associated alerts were not cleared, although data collection was disabled for those metrics under Admin → Performance Polling → MS SQL.
• In Apache Kafka monitor, the health of Topics were incorrectly shown as down under 'Topic Details' tab.
• CPU core details were not shown in the API response upon executing the GetMonitorData REST API.
• In ServiceDesk Plus (SDP) Integration, an error message was shown since the proxy was not bypassed for the SDP host address specified during SDP configuration.

Issues fixed in 15470

• In Linux monitor, there were issues in collecting data when a user-defined port was configured while adding the monitor in SSH mode.
• In Server monitors, there were issues in collecting data after the monitors were added via SSH Private key using SSH mode of monitoring. (Broken since v15350)
• In MS SQL monitor, there was a slowness in collecting data for all the metrics due to improper handling of OutOfMemoryException.
• In Couchbase monitor, there were issues in collecting data for all the metrics under 'Data Buckets' tab.
• In Microsoft 365 monitoring, invalid rows were added under 'Sites Statistics' table in 'Sites and Applications' tab for SharePoint Online monitor.
• In Microsoft 365 monitoring, Skype for Business Online Service health was not shown under 'Overview' tab for Microsoft Teams monitor.
• In Citrix Virtual Apps and Desktop monitor, there were issues in collecting data for all the metrics under 'Overview' tab.
• In Citrix Hypervisor monitoring, Resource Pool was not discovered after the Citrix Hypervisor host was added.
• In VMware ESXi monitor, configured Guest OS and added processes/services for VMs were lost after the build was restarted. (Broken since v15250)
• In Database Query Monitor, no data was shown for 'Row Count' attribute for service pack installations. (Broken since v15000)
• Custom monitors that were created under the 'Servers' category went down on restart. (Broken since v15180)
• In CouchBase monitor, there were issues in collecting data for all the metrics under 'Server Nodes' tab.
• Issues were seen in collecting data for all the metrics in Nginx monitor. (Broken since v14050)
• There were issues in adding the REST API monitor when the API URL contained special characters.
• When a monitor was added via REST API or Bulk Import using Credential Manager, the credential details were missed in the 'Edit Monitor' page.
• There were issues in removing the monitors from monitor group in 'Associate Monitor' page. (Broken since v15340)
• In 'Alarms' tab, no data was shown after all the monitor types were deselected from the filter dropdown.
• In Configure Alarms, Dependent Device configuration for the monitor's availability was not working. (Broken since v15370)
• In Configure Alarms, dependent device configurations were wrongly removed upon removing the threshold configurations for the attributes.
• In Configure Alarms, dependent devices were displayed garbled while configuring the monitor's availability for Chinese installations.
• WebHook/REST API action was not working with FORM payload for Memory Utilization attribute in Server monitors.
• There was an issue in configuring mail server using port 465 with SSL connection enabled for Gmail server.
• Replaceable tags were not working for Host Name and Host IP details while configuring email action for SAP CCMS monitors.
• No options were displayed for Oracle EBS monitor in Admin → Performance Polling. (Broken since v15200)
• The 'Virtualization' section in the 'Reports' tab displayed a blank page when the GUI was accessed before the build was started completely.
• In History Data reports, 'I/O Wait Time %' attribute was wrongly shown in the dropdown for HP-UX monitors.
• Password change was not prompted for the newly-created users during first login when the user profile was updated before first login in Admin → User Management → Profiles. (Broken since v15050)
• Polling delay alert was incorrectly raised for unmanaged monitors configured under Admin → Self Monitoring.
• Service details were incorrectly shown as servers in the API response when when the value for the field 'type' was specified as 'all' in ListServer REST API.
• Invalid IP addresses were shown in the API response when the value for the field 'type' was specified as 'all' in ListServer REST API.
• Included the debug information details as an attachment along with the health RCA message in alert mail.

APM Insight issues:

• Applications were not managed/unmanaged when all their associated instances were managed/unmanaged under Bulk Configuration view.
• Chinese characters were displayed garbled in the GUI for Chinese installations.

Enterprise Edition issues:

• There were issues in adding the monitor in Managed server from Admin server when the password field contained special characters.
• In Admin server, data collection was occurring for some monitors which were added in Managed server with Microsoft SQL backend database. (Broken since v15180)
• In Admin server, there were issues in performing bulk import when HTTP port was enabled under Admin → Security Settings.

APM Plugin issues:

• Issues were seen in installing APM Plugin for both 32-bit Windows and Linux machines. (Broken since v15080)
• The Delete dashboard option under 'Actions' was not working in 'Home' tab for APM Plugin installations. (Broken since v15250)
• There were issues in adding monitor groups for APM Plugin installations. (Broken since v15400)
• In APM Plugin, delete and add user options were incorrectly shown when the number of user profiles were more than 15 under Admin → User Management → Profiles.
• There were issues in creating ticket action and to save ServiceNow integration settings when APM Plugin was accessed from OpManager GUI.

Issues fixed in 15401

• In VMware ESXi monitor, configured Guest OS and added processes/services for VMs were lost after the build was restarted. (Broken since 15250)
• In Configure Alarms, Dependent Device configuration for the Monitor's Availability was not working. (Broken since 15370)
• In Server monitors, there were issues in collecting data after the monitors were added via SSH Private key using SSH mode of monitoring. (Broken since 15350)
• There were issues in restoring the PostgreSQL backend database. (Broken since 15230)
• Unwanted characters were appended with each field labels in 'Add New Monitor' page for Japanese installations. (Broken since 15250)
• In Admin → Personalize Webclient, default language was selected as English although the build was installed in other languages. (Broken since 15180)
• In Enterprise Edition Admin server, data collection was occurring for some monitors which were added in Managed server with Microsoft SQL backend database. (Broken since 15180)
• Custom monitors that were created under the 'Servers' category went down on restart. (Broken since 15180)

Issues fixed in 15400

• In MongoDB monitor, there were issues in collecting data for all the metrics for MongoDB versions 4.x. (Broken since 15250)
• In Amazon monitor, there was an issue in fetching performance metrics for Aurora-MySQL type RDS instances.
• In Amazon monitor, there were issues in performing actions for EC2 instances in both 'Cloud Action' and monitor-level actions under 'Compute' tab.
• Access restriction page was shown while configuring threshold for Web Services monitor.
• In APM Insight, escape characters were displayed when the configuration was saved in JSON format for Custom Instrumentation.
• In APM Plugin, there were issues in adding a new custom monitor type under Admin → Custom Monitor Types. (Broken since 15050)
• The option 'Add Host also when you add a new service' was not working under Admin → Global Settings. (Broken since 15180)
• Error pop-up was shown in the Monitor Details page when the display name contained some extra whitespaces under Support → Monitor Summary → Monitor Details.
• Issues were seen in adding the Web Token when proxy was enabled in Applications Manager.
• There was an issue in adding the web token when the endpoint URL contained query params in it.
• Issues were seen in adding the Web Token although the endpoint servers returned 202 as successful response code while connecting to it.
• Updated the SAP HANA monitor's JDBC URL to avoid performance issue in SAP HANA server.

MS SQL Monitoring issues:

• Incorrect values were shown for the 'Total Space Used (MB)' metric of user tables under 'Database Details' in 'Database' tab.
• Monitor's availability was incorrectly shown as UP although the SQL host server went down.
• Data was being collected for the unmanaged SQL jobs under 'Jobs' tab.
• Duplicate queries were listed for metrics under 'Performance' tab.

Issues fixed in 15381

• In MongoDB monitor, there were issues in collecting data for all the metrics for MongoDB versions 4.x. (Broken since 15250)
• In VMware ESXi monitor, configured Guest OS and added processes/services for VMs were lost after the build was restarted. (Broken since 15250)
• In APM Plugin, there were issues in adding a new custom monitor type under Admin → Custom Monitor Types. (Broken since 15050)
• Issues were seen in unmanaging multiple monitors from Bulk Configuration View. (Broken since 15340)
• In ServiceDesk Plus (SDP) integration, there was an issue in configuring the integration when mandatory fields were set for the default request template in SDP On-Premise application (V3 APIs).
• Issues were seen in adding the Web Token when proxy was enabled in Applications Manager.
• There was an issue in adding the web token when the endpoint URL contained query params in it.
• Issues were seen in adding the Web Token although the endpoint servers returned 202 as successful response code while connecting to it.
• The option 'Add Host also when you add a new service' was not working under Admin → Global Settings. (Broken since 15180)
• Password change was not prompted for any newly-created users although the option 'Enforce password change for users during first login' was enabled under Admin → User Management → Account Policy. (Broken since 15370)
• Issues were seen in deleting/unmanaging the monitors after the license file was applied under Admin → Product License. (Broken since 15200)
• In Configure Alarms, Dependent Device configuration for the Monitor's Availability was not working. (Broken since 15370)
• In Server monitors, there were issues in collecting data after the monitors were added via SSH Private key using SSH mode of monitoring. (Broken since 15350)
• There were issues in restoring the PostgreSQL backend database. (Broken since 15230)
• In Enterprise Edition Admin server, data collection was occurring for some monitors which were added in Managed server with Microsoft SQL backend database. (Broken since 15180)
• Custom monitors that were created under the 'Servers' category went down on restart. (Broken since 15180)

Issues fixed in 15390

• There was a slowness in collecting data for all the metrics in Linux and AIX server monitors.
• In PostgreSQL monitor, there were issues in collecting data for 'Top 10 query by CPU' metrics under 'Performance' tab for PostgreSQL versions 13 and above.
• In MS SQL monitor, there were issues in collecting data for some metrics when the default polling status was set to 'Collect data in every polling' for those metrics under Admin → Performance Polling → MS SQL. (Broken since 15370)
• In Oracle Autonomous Database monitoring, there was a slowness in loading the monitor after DB credentials were updated in the 'Edit Monitor' page.
• REST API action was not working with JSON payload for CPU and memory attributes in Windows monitor.
• Issues were seen in unmanaging multiple monitors from Bulk Configuration View. (Broken since 15340)
• Incorrect time range was shown in Availability reports after the 'Timezone' option was enabled in Downtime Scheduler under 'Admin' tab.
• Issues were seen in deleting/unmanaging the monitors after the license file was applied under Admin → Product License. (Broken since 15200)
• Password change was not prompted for any newly-created users although the option 'Enforce password change for users during first login' was enabled under Admin → User Management → Account Policy. (Broken since 15370)
• In ServiceDesk Plus (SDP) integration, there was an issue in configuring the integration when mandatory fields were set for the default request template in SDP On-Premise application (V3 APIs).

Security Issues

• Stored XSS issues in "Monitor Update" module is fixed. (Reported by ranjit pahan)
• Sensitive data exposure by brute force in "Reports" module is fixed. (Reported by Rahul)

Issues fixed in 15370

• MS SQL monitors were collecting data at every poll for all the metrics irrespective of the option selected for default polling status under Admin → Performance Polling → MS SQL.
• In File monitor, there were issues in collecting data when content check was enabled. (Broken since 15200)
• In Enterprise Edition, option to delete/unmanage MS SQL monitors was not shown in Admin server.
• Email actions were not working when the SMTP password contained single or double quotes while configuring mail server.

Database Query Monitoring issues:

• There were issues in creating the monitor for MS SQL when Stored Procedure Monitoring was enabled under Admin → Performance Polling → Optimize Data Collection → Script / Database Query Monitor.
• There were issues in creating the tables in the monitor for DB2 for i database after the service pack was applied.

ADDM issues:

• There were issues in re-adding the discovered server monitors which were deleted from the discovery profile.
• Duplicate monitors were added through network discovery.
• Issues were seen in performing application discovery for Windows servers.
• Mapping was missing between applications in Servers-Applications Dependency Map view.
• Issues were seen in editing the monitors added through discovery.

Security Issues

• CSRF/XSS/Privilege-escalation issues in "Web Server/Services" and SIF module is fixed. (Reported by ranjit pahan)

Issues fixed in 15360

• In APM Insight monitor, components listed in 'Graph View' were not shown in both 'Map View' and 'Table View' under 'Service Map' tab.
• In Bulk Configuration View, there were issues in accessing the monitor resources in a new tab under 'List View'.
• In Enterprise Edition Admin server, Managed servers column was not shown for all the users other than the admin user in Inventory report.
• In APM Plugin, alerts generated from Script monitors were not escalated to OpManager server devices.

Security Issues:

• CSRF/XSS/Privilege-escalation issues in various modules are fixed. (Reported by ranjit pahan)

Issues fixed in 15350

• In IBM DB2 monitor, there were issues in collecting data for all the metrics under 'Overview' tab for DB2 v9.7.
• In APM Plugin, there were issues in updating the settings under 'Account Policy' tab in Admin → User Management.

Issues fixed in 15340

• In MS SQL monitor, there were issues in collecting data for Mirroring details under 'Database' tab.
• In MS SQL monitor, session details were not shown when the default polling status for Session details was set to 'Collect data in every hour' under Admin → Performance Polling → MS SQL.
• In Microsoft 365 monitoring, there was a slowness in collecting data for Exchange Online metrics when there was huge data in the user's environment.
• There was a slowness in generating Support Information File (SIF) through script file execution.

Security issues

• CSRF/XSS/Privilege-escalation issues in "monitor, custom-fields and dashboard" modules are fixed. (Reported by ranjit pahan)

Issues fixed in 15330

• Network devices were not listed while associating monitors to monitors group. (Broken since 15250)
• Machine learning was not working when ML-based thresholds were configured to tabular attributes in Exchange server monitor.

Database Query Monitoring issues:

• There was a slowness in collecting data for all the metrics when Stored Procedure Monitoring option was enabled under Admin → Performance Polling → Optimize Data Collection.
• There was an issue in showing data for metrics under 'Execution Time' sometimes.
• Issues were seen in displaying data for tabular metrics when the query output contained '|' symbol.
• Duplicate monitors were created when the queries contained single quotes.

Security Issues

• CSRF and Privilege escalation via "Alarm and Annotation" in Fault module is fixed. (Reported by ranjit pahan)

Issues fixed in 15320

• In SNMP monitor, an error page was shown while accessing the monitor for some users with MySQL and MS SQL backend database.
• There were issues in loading Heat Map widget properly sometimes due to connectivity issues with backend database.
• In OpManager integration, there were issues in redirecting to the OpManager device page from the Topology Map View widget.
• In Oracle DB monitor, there were issues in collecting data for all metrics under 'Alert Log' tab for Oracle 18c databases. (Broken since 14660)
• In Credential Manager, removed the options 'Database Name' for MySQL and DB2 monitors, and 'Connect using name instance' for MS SQL monitors from credential template.
• In APM Plugin, there were issues in syncing from Managed Servers to Admin server when bundled PostgreSQL DB was used for OpManager. (Broken since 15090)
• In Server monitors, alerts were not raised when the disks were removed from the servers in SNMP mode.

Enterprise Edition issues:

• There were issues in starting, stopping, or restarting cloud monitor instances from Admin server when there were multiple Managed servers.
• Disable action performed for Nginx Plus monitor's tabular attributes from Admin server were not reflected in Managed servers.
• Removed the option to delete instances from parent cloud monitors in Admin server.

Issues fixed in 15310

• In Oracle Cloud Autonomous Database monitor, there was a slowness in collecting data for all the Tablespace metrics under 'Tablespace' tab.
• In Credential Manager, SSH Private Key Passphrase was not updated properly in all associated monitors upon updating the credential details.
• In Admin → Performance Polling → Servers, the option 'Skip buffer and cache from monitoring' was enabled automatically after every server reboot although it was disabled for Linux monitors. (Broken since 15080)
• In Enterprise Edition, Email actions that were created, updated or deleted from Admin server were not synced to Managed servers. (Broken since v15270)
• PDF report generated from the Attribute History (7/30) report page was corrupted. (Broken since 15200)

Issues fixed in 15300

• In Webpage Analyzer monitor, there were issues in adding the monitor and collecting data when proxy was enabled for the monitor.
• In Tomcat monitor, the monitor status was shown as down due to an error in /manager/status page for some Tomcat versions.
• In Oracle DB monitor, incorrect data was shown for Backup Date and Backup Age under 'Backup Job Details' in 'Jobs & Backup' tab.
• In ServiceDesk Plus (SDP) integration, there was an issue in closing a ticket when the 'Log a ticket' action's ticket description contained custom tags selected from the drop down for SDP V3 APIs.
• In SDP-CMDB integration, there were issues in syncing Ping monitors to SDP.
• In Capacity Planning report, an exception was shown on clicking the value 'Yes/No' under Oversized/Undersized/Idle for FreeBSD and Novell monitors.

Issues fixed in 15225

• In Enterprise Edition Admin server, data collection was occurring for some monitors which were added in Managed server with Microsoft SQL backend database. (Broken since 15180)
• Custom monitors that were created under the 'Servers' category went down on restart. (Broken since 15180)

Issues fixed in 15223

• In Oracle DB monitor, there were issues in collecting data for all metrics under 'Alert Log' tab for Oracle 18c databases. (Broken since 14660)
• In APM Plugin, there were issues in syncing from Managed Servers to Admin server when bundled PostgreSQL DB was used for OpManager. (Broken since 15090)
• ADDM has been removed from the 'Add-on' category.

Issues fixed in 15222

• In Webpage Analyzer monitor, there were issues in adding the monitor and collecting data when proxy was enabled for the monitor.
• In Oracle DB monitor, incorrect data was shown for Backup Date and Backup Age under 'Backup Job Details' in 'Jobs & Backup' tab.
• In Enterprise Edition, there were issues in syncing from Managed servers to Admin server after both Admin and Managed servers were upgraded to a version between 15150 and 15270 for users with Linux OS and PostgreSQL backend.
• In Enterprise Edition, data collection was attempted for some monitors from Admin server. (Broken since 15180)
• In APM Insight, an error page was shown while viewing monitor details of Applications/Instances when data collection limits were set above 1000 under Admin → Performance Polling → APM Insight. (Broken since 15220)
• In APM Insight, there were issues in performing cleanup of data tables for users with MS SQL backend database versions below 2016. (Broken since 15220)
• In Admin → Performance Polling → Servers, the option 'Skip buffer and cache from monitoring' was enabled automatically after every server reboot although it was disabled for Linux monitors. (Broken since 15080)
• PDF report generated from the Attribute History (7/30) report page was corrupted. (Broken since 15200)

Issues fixed in 15290

• In Bulk Configuration view, health status was incorrectly shown as 'Unknown' for some MySQL monitors under 'List View'.
• Some of the VMware monitors went down immediately after the restart of Applications Manager.
• In Enterprise Edition Admin server, error page was shown while trying to update the changes in 'Edit Monitor' page for default MS SQL monitor.
• In Oracle DB monitor, there were issues in loading the data for 'Backup Jobs Details' table under 'Jobs & Backup' tab. (Broken since 15180)
• In JMX/SNMP Dashboard monitor, access restriction page was shown while trying to configure alarms for attributes from monitor dashboard.
• Float threshold was not applied to float attributes if the threshold contained secondary condition.
• RCA message was not shown properly for float attributes when float threshold with secondary condition was associated.
• In Configure Alarms page, value for thresholds with secondary condition was incorrectly shown for all attributes in Monitor Group and Monitor Type alarm templates.

Security Issues

• Privilege escalation via Downtime note in reports module is fixed. (Reported by Ranjit pahan)

Issues fixed in 15280

• In APM Insight, an error page was shown while viewing monitor details of Applications/Instances when data collection limits were set above 1000 under Admin → Performance Polling → APM Insight. (Broken since 15220)
• In APM Insight, there were issues in performing cleanup of data tables for users with MS SQL backend database versions below 2016. (Broken since 15220)
• In IBM DB2 monitor, there were issues in collecting data for Session Details for versions below 10.5.
• In IBM DB2 monitor, health and availability status was incorrectly shown after the database instance was stopped/unavailable.
• REST API monitor modified to add multiple monitors using the same REST API URL.
• There were issues in saving the SNMP Trap Listener when the length of the 'Text' field under 'Filter based on variable bindings' was more than 100 characters.
• PostgreSQL migration changes handled to modify the output locale to English for Non-English OS.

Issues fixed in 15270

• In Oracle Cloud Storage monitor, duplicate entries were shown for objects under 'Objects' tab.
• In vCenter Virtual Infrastructure, duplicate entries were sometimes shown for Datacenter, Cluster, Resource Pool and ESXi components under Monitor Group View.
• In Enterprise Edition, JumpCloud directory was shown as OpenLDAP under Admin → User Mangement → Domains for Managed servers when SSO was enabled in Admin server.
• In User Management, 'Fetch User' button was not shown for users in 'Import User from domain' page when the option 'Enable Subgroups view' was disabled under Admin → Server Settings → General Settings.
• Audit Logs were not shown under Admin → Audit Logs after the language was changed to Japanese in web client.
• Units were not displayed for metrics on exporting the reports to a CSV/Excel file.
• Child monitor details were not shown for monitors under Support → Monitor Summary → Monitor Details.

Issues fixed in 15260

• In Oracle DB monitor, there were issues in collecting data for Lock Statistics, Objects Approaching MAX Extents, Schedule Job Details, Schedule Job Stats due to socket read timeout error during query execution.
• Oracle DB monitor modified to sort data based on 'Free Bytes (MB)' attribute in descending order under 'Tablespaces with Least Free Bytes' in 'Overview' tab.
• Garbled characters were shown on exporting the audit logs to a PDF file for Japanese installations.
• In Configure Alarms Template, removed 'Anomaly Details' tab from Alarm Configuration page.

Issues fixed in 15221

• Renewed Push Notification Certificate for Applications Manager Mobile App.

Issues fixed in 15250

• In SNMP monitor, some custom attributes were not shown while adding MIBs due to improper handling of NullPointerException.
• Execute Program action was not working for local Windows server when the 'Program to execute' field contained "/" symbol. (Broken since 14880)
• There were issues in generating PDF reports for a few report types under Admin → Schedule Reports. (Broken since 14970)
• While viewing the 'Business View' tab of a monitor group, an error popup was shown on clicking the business view for users with 'Operator' role.
• Issues were seen in creating Support Information File (SIF). (Broken since 15230)

Issues fixed in 15240

• In Oracle DB monitor, incorrect value was shown for 'Log Apply Gap' attribute under 'Log Apply Gap Details' in 'RPO' tab.
• In Oracle DB monitor, incorrect value was shown for 'Buffer Hit Ratio' attribute under 'Overview' tab.
• In MS SQL monitor, the query used to collect data for 'Top Queries by Lowest Plan Reuse' increased the TempDB utilization to its maximum value.
• In MS SQL monitor, there were issues in generating reports and creating widgets for MS SQL AlwaysOn resource attributes.
• APM Insight monitors were not listed for all user roles in Single Sign-On (SSO) enabled Admin server.
• In APM Insight, there was an issue in saving the Custom Instrumentation settings for Java and .NET Core agents.

Security Issues

• CVE-2021-35512 : CSRF and Privilege escalation via "Advanced Analytics" in Integration module is fixed.

Issues fixed in 15230

• In VMware ESXi monitor, availability of VM goes up and down when VM is kept in maintenance mode and the option 'Show monitor status as up when under Downtime Schedule' is enabled under Admin → Downtime Scheduler → Downtime Scheduler Settings.
• Attributes were not listed in the 'Configure Alarms' page for SNMP monitors. (Broken since 14870)
• In Top N Monitors widget, vCenter cluster name was shown instead of VMware ESXi monitor name for datastore metrics.
• In Top N Monitors widget, widget column sorting was not working correctly for primary metrics in Oracle DB monitors.
• In OpManager integration, monitors were not fetched from OpManager when OpManager was in version 125393 or above.

Issues fixed in 15220

• In Oracle DB monitor, incorrect values were shown for Temporary Tablespace Utilization under 'Tablespace Details' in 'Tablespace' tab.
• In Oracle DB monitor, under 'Tablespace' tab, incorrect values were shown for 'Free Blocks' attribute under 'Tablespace Details' when the option 'Calculate Tablespace statistics along with its autoextensible size' was enabled under Admin → Performance Polling → Optimize Data Collection → Oracle → TableSpace Statistics metric. (Broken since 14811)
• There was a slowness in loading the monitor details page for Web Services monitors.
• Issues were seen in creating widgets when 'Database Status' attribute was chosen as a additional metric for MS SQL monitors.
• Memory Utilization attribute report of Linux and AIX server monitors showed 'No data available'. (Broken since 15000)
• In Windows monitor, incorrect value was shown for 'CPU Utilization' attribute for Windows Server 2008.
• Only 100 channels were shown in the dropdown while creating/editing a Slack action.
• In HelpDesk integration, tickets that were deleted/merged in the Helpdesk product caused issues in generating further tickets for the corresponding alarm entities. (Broken since 14780)
• In Monitor Group view, 'Show More monitors' link was not shown when there were more than 100 monitors associated to a monitor group. (Broken since 15130)

ServiceDesk Plus (SDP) integration issues:

• Relationships were not linked to parent CIs in SDP-CMDB integration. (Broken since 15030)
• There were issues in adding devices as 'Desktop' CI type in SDP-CMDB integration.
• Issues were seen while adding relationship for 'Database' and 'Server' type CIs in SDP.

Issues fixed in 15210

• There was an issue in Add ticket request option when template was used in ServiceDesk Plus Log a ticket action. (Broken since 14780)
• Mail Server credentials were displayed while using Mail server API.
• There was an issue in data collection for Script monitor in Linux csh shell.
• ADDM dicovery process for SNMP devices wasn't completed when the 'Discover and Add' option was selected.
• The troubleshooting link present in the Error message of details page in Apache server monitor was not rendered properly in APM Plugin builds.
• There was a problem in updating RCA of Health attribute for monitors after version 14690 in Japanese builds due to RCA format difference at the metric level.
• The Skin tab and Customize tab in Personalize webclient page under Admin page was wrongly displayed in APM Plugin builds.

Issues fixed in 15200

• Connections made from APM will now be listed as Applications Manager in Sybase ASE and Sybase SQL Anywhere monitors.
• Custom fields option for Monitor Groups in the Last 24 hours / 30 Days Availability History widget was not working properly.
• HTML links in RCA messages are configured to be included in the parent's health RCA message whenever a threshold violation occurs.
• Altered the datacollection mechanism of Apache Solr to be compatible for Solr version 7.5.

Issues fixed in 15190

• SNMP Custom attributes were not displayed properly in 'Tabular Data' widget.
• Actions other than Email were getting removed from Managed server monitors.
• 'Driver for SQL connection' option was missing in existing credential templates after upgrade. (Broken since 15150)
• Regex support for "Should not contain" value in REST API monitor has been added.
• Managed server to Admin server sync was failing for APM Plugin builds installed in Windows French OS machines.
• Alarm template configuration for VMware datastores was not being applied properly.
• When alarms were configured for datastores using the template, duplicate entires were listed in the audit logs for VMware datastores that were mapped with multiple ESX.
• Java's console logger in APM insight has been disabled as it was causing thread block issues.
• 'Filter By option' for monitors was not working in "Performance polling -> Optimise Data collection."
• 'Show Additional Metrics' field was broken when Windows Process related metrics were added in 'Tabular Data' widget.(Broken since 14860)

Issues fixed in 15180

• Performance metrics of processes were not collected in Windows Server when AppManager was installed in Spanish language.
• There was a problem in displaying certain disabled rows in the AppManager UI for Oracle and Amazon monitors.
• Modified Raw data cleanup value was not reflected in the newly created DB query monitors and custom monitors.
• Child monitors' data in the XML response of Rest APIs was improper.
• SSL connection is now enabled by default for Scheduled Reports.
• String threshold values were not displayed properly in 'Configure Alarm Page'.

Issues fixed in 15170

• Local monitors for EUM (Except RBM) were not being added when the action was performed from Admin Server.
• Service name was displayed incorrectly in Windows monitor details page. (Broken since 15060)
• There was a problem in collecting hardware metric data for WMI Windows monitor.
• Success and failure codes for Windows Scheduled Task attributes have been handled for Windows monitor.
• Process CPU % metric value was not displayed for processes in the 'Add Process' page for SNMP Linux monitors.
• Guest OS metrics data was not getting populated for some Azure VMs.
• 'View Events' link in Windows monitor's RCA message has been fixed to open in a new tab in APM plugin.
• Deleted datastore was not removed from Applications Manager UI.
• Datacenter/clusters were incorrectly listed under VCenters in the Category view.
• Cleanup query has been modified and missing tables have been included in the cleanup list to optimize Admin server performance.
• PDF reports generated via the Schedule reports option were getting corrupted if there was no data present in the reports.

Issues fixed in 15160

• There was a problem in adding KVM monitor for all Linux distributions except Ubuntu. (Broken since 14340)
• URL monitor was not getting added/updated in CN UI. (Chinese builds).
• In Oracle Monitor, Under Tablespace → Tablespace Details, SYSTEM tablespace utilization metric was showing incorrect data due to improper query handling of data collection. (Broken since 15080)
• There was an issue in data collection when the Apache's server-status API returned a lot of parameters.
• PostgreSQL password change has now been handled to affect the health of the monitor. (Broken since 13650)
• Forecast reports generated for monitors under monitor groups were empty for some attributes.

Issues fixed in 15150

• There was a problem starting the MSSQL build while switching the JDBC driver from JTDs to MS in the PPM upgraded version.
• In Script monitor, dependencies were not updated properly while switching hosts.
• In Windows server monitor, Windows Event Log rules were not syncing to the new MAS servers from admin.
• Generation of availability and health history report in excel format failed when the number of rows exceeded 32,767.
• At a glance report in CSV format of other language builds had the charset as UTF-8 instead of the default encoding.
• Agent initialization failed due to URL mismatch in APM Insight's Ruby on Rails agent.

Issues fixed in 15140

• In MS SQL monitor, incorrect values were shown for metrics under 'Database' tab for Spanish installations.
• In Windows server monitor, configured service was shown as 'down' when the service name contained whitespace at the end.
• In Windows server monitor, active processes were not shown on clicking the 'View Active Processes' option for users with Operator role. (Broken since 14570)
• In Hyper-V cluster monitoring, storage disks that went offline were hidden under 'Disk Space Details' but were shown under 'Disk Details' in 'Storage' tab. (Broken since 15000)
• 'Log a ticket' action was not shown under 'Actions' dropdown by default for OEM installations.
• Actions were not removed from monitors although they were removed from Alarm Template.

Issues fixed in 15130

• In Active Directory monitor, there were issues in collecting data for Port Connectivity metrics when Applications Manager was installed in older versions of Windows OS.
• Few monitor types were not shown in the Add New Monitor page for APM plugin installations. (Broken since 15050)
• In MS SQL monitor, two or more publications with the same name were not shown for Publication Details after the service pack was applied for users with PostgreSQL backend. (Broken since 15070)
• In APM Insight, there were issues in saving the Agent Configuration settings for .NET, PHP, and Node.js agents. (Broken since 15070)
• In APM Insight, an error message was shown when there was no data available for Apdex score under Applications view.
• RBM monitor modified to perform cleanup of old zipped screenshots from Applications Manager directory for Windows installations.

Security Issues

• CVE-2021-31813: Stored XSS through User Name imported from Active Directory is fixed.

Issues fixed in 15120

• In OpManager integration, there were issues in fetching and showing data for network devices for OpManager versions 12538 and above.
• In Enterprise Edition, there were issues in syncing the report data from Managed server to Admin server. (Broken since 15100)
• There was a slowness in loading the API response on executing the ListMonitorGroups REST API.
• There was an issue in updating the 'SSL is enabled' option while editing an IIS server monitor. (Broken since 14640)

Issues fixed in 15110

• On executing the GetMonitorData REST API, 'Total Memory' attribute was not present in the API response for Tomcat monitors.
• While creating an URL Sequence monitor, HAR file import failed when a URL in the HAR data contained special characters.
• OAuth provider for 'Authorization' grant type could not be added when Application Manager's hostname was in uppercase or when the server was running in SSL port '443'.

Security Issues

• Stored XSS through various fields in Webpage Analyzer, DNS and Service Monitor's is fixed. (Reported by ranjit pahan)
• Reflected XSS in Website Content Monitor is fixed. (Reported by ranjit pahan)
• CSRF through delete operation in Credential manager module is fixed. (Reported by ranjit pahan)
• CSRF through file upload operation in "Upload Files/Binaries" module is fixed. (Reported by ranjit pahan)
• Privilege escalation to add new custom field is fixed. (Reported by ranjit pahan)

Issues fixed in 15100

• In MS SQL DB monitor, there were issues in collecting data for Log Shipping Status under 'Replication' tab.
• There were issues in loading the Monitor Status Overview widget when the filter was applied to more than 2000 monitors for users with MS SQL backend database. (Broken since 15050)
• Issues were seen in creating a URL sequence monitor from Web Transaction Recorder.
• Datastore count was incorrectly shown in vCenter Monitor Group page since VMware datastores with the same UUIDs were not discovered.

Issues fixed in 15007

• There were issues in upgrading PostgreSQL database due to insufficient DB user permissions.

Issues fixed in 15006

• There were issues in starting Applications Manager after service pack upgrade when standalone PostgreSQL backend DB was used. (Broken since v14850)
• There were issues in migrating PostgreSQL database from v9 to v11 due to presence of Ctrl Z characters in the data.
• There were issues in migrating PostgreSQL database upon renaming the old DB directory folder for users with root user privileges in Linux.

Issues fixed in 15005

• There was an issue with PostgreSQL migration in Windows when it was installed in locations other than 'Program Files' directory.
• Renewed Push Notification Certificate for Applications Manager Mobile App.

Issues fixed in 15004

• APIs for Slack Integration have been updated.
• There was an issue with PgSQL migration for root users in Linux.
• There was an issue with PgSQL migration in Windows when it was installed in Program Files directory.
• At a glance report CSV of other language builds had UTF-8 charset instead of default encoding.
• RBM monitor modified to perform cleanup of old zipped screenshots from Applications Manager directory for Windows installations. (Previously fixed in 15130)
• Stored XSS Vulnerability was found in Actions page while creating EMail actions with script tag as Display name.
• Mail Server credentials are displayed while using Mail server API.
• There was a problem in updating RCA of Health attribute for monitors after version 14690 in Japanese builds due to RCA format difference at the metric level.
• You can now see all the available channels in the Create Action page for Slack Integration.

Issues fixed in 15003

• Weblogic monitor didn't show tabs other than JVM. (Broken since 14950)
• PostgreSQL migration changes handled to modify the output locale to English for Non English OS.
• Permission issues while starting the older PostgreSQL version. (Broken since 15000)
• There was slowness in loading the API response on executing the ListMonitorGroups REST API.

Issues fixed in 15090

• There was a slowness in loading the widgets in the Dashboard page for users with 'Operator' role when there were more than 2000 monitors present.
• In APM Plugin, data was not synced from Managed server to Admin server when remote PostgreSQL was configured for OpManager's central server.
• In Sun Solaris monitor, duplicate entries were shown for Disk I/O Statistics under 'Disk' tab.
• There were issues in updating the permissions for Operator role under Admin → User Management → Permissions. (Broken since 14940)
• While creating a new Windows Event Log Rule, there were issues in associating the log rule to selected monitors under Admin → Log Rules.
• APM Insight monitors were not listed under 'APM Insight' tab in Admin server.

Security Issues

• Stored XSS through Displayname via URL and File Monitor is fixed. (Reported by ranjit pahan)

Issues fixed in 15002

• On updating the password in RHV Virtual Infrastructure monitor group, the same was not updated to the host servers and their associated VMs. (Broken since 14880)
• In Hyper-V cluster monitoring, there were issues in collecting data when the domain username contained special characters "\\" instead of "\". (Broken since 15000)
• There were issues in collecting data for Health Percentage report and Health History widget of monitor groups.
• There were issues in collecting data for File/Directory and IIS monitors during script execution due to incorrect commandline arguments.
• There were issues in updating the permissions for Operator role under Admin → User Management → Permissions.
• In APM Insight, there were issues in listing all the traces under 'Traces' tab. (Broken since 14910)
• MS SQL monitoring via named instance was not working when the monitor was added through non-default named instance. (Broken since 15000)
• In MS SQL monitoring, there were issues in collecting data for Publication Details when two or more publications had the same name under 'Replications' tab.
• There was an issue in performing connection refresh to the lost MS SQL backend database connection when MSSQL JDBC driver was used. (Broken since 15000)
• Web client was not accessible due to missing servlet 'FCExporter'. (Broken since 14530)
• APM Insight monitors were not listed under 'APM Insight' tab in Admin server.

Security Issues

• A Reflected XSS through selectedGraphType in widget module is fixed. (Reported by Ezhil Krish)
• A Stored XSS through Action program name in audit log page is fixed. (Reported by Ezhil Krish)
• A Post Authenticated SQL injection in AlarmView module is fixed. (Reported by Ezhil Krish)

Issues fixed in 15080

• In Hyper-V cluster monitoring, there were issues in collecting data when the domain username contained special characters "\\" instead of "\".
• In Script monitor, false alarms were triggered although the 'Manage Table Data' option was disabled under 'Output Settings'.
• In Oracle DB monitor, there were issues in collecting data for Tablespace Details, Database Free Size, and Blocked Session metrics due to improper handling of socket read and connection timeouts during query execution.
• Garbled characters were shown in the error message after the agents were disabled/deleted under EUM → Locations for non-English installations.
• In Windows server monitor, incorrect values were shown for the threshold details of 'CPU Utilization' attribute in the History Data report.
• IIS server and Microsoft .NET monitor types were not shown in the Add New Monitor page for APM plugin installations. (Broken since 15050)
• In APM Insight, there were issues in listing all the traces under 'Traces' tab. (Broken since 14910)

Issues fixed in 15070

• There were issues in collecting data for File/Directory and IIS monitors during script execution due to incorrect commandline arguments.
• Alerts were not raised for Windows monitor when the server was restarted, although the option was enabled under Admin → Performance Polling → Servers.
• MS SQL monitoring via named instance was not working when the monitor was added through non-default named instance.
• In MS SQL monitoring, there were issues in collecting data for Publication Details when two or more publications had the same name under 'Replications' tab.
• In Apache Solr monitoring, there were some discrepancies in the data shown for hostname under 'Cores' in 'Overview' tab.
• Credentials were validated and passed upon clicking the 'Test credentials' option although incorrect password was entered while adding/modifying a DB2 monitor.

Issues fixed in 15060

• In IBM MQ monitoring, there was a slowness in collecting data when large number of IBM MQ monitors were present in the environment.
• Attribute names were not displayed for Tomcat monitors in Anomaly Dashboard page for Japanese versions.
• There were issues in loading the popup while associating monitors to a monitor group directly from the graph under 'Business View' tab.
• In APM Plugin, there was an issue in starting Applications Manager when the plugin was upgraded.
• Users were unable to add a monitor group from Admin server in APM Plugin Enterprise Edition.

Security Issues

• A Stored XSS through Action program name in audit log page is fixed. (Reported by Ezhil Krish)
• A Post Authenticated SQL injection in AlarmView module is fixed. (Reported by Ezhil Krish)

Issues fixed in 15001

• In APM Insight, there were issues in editing or updating the agent configuration settings due to an exception that occurred after updating the MS SQL driver in backend database. (Broken since 15000)
• In APM Plugin, there was an issue in starting Applications Manager when the plugin was upgraded.
• In Helpdesk integration, ticket flow was not working properly when ticket status was changed to other languages in ServiceDesk Plus.
• Helpdesk integration updated to accommodate a change in response key internally while fetching available status details from ServiceDesk Plus (SDP) v11138.

Security Issues

• Multiple Post authenticated SQL injections while create/edit of Custom Monitor Type module is fixed. (Reported by Ezhil Krish)
• A Post authenticated SQL injection in URL monitor module is fixed. (Reported by Ezhil Krish)
• A Reflected XSS and CSRF vulnerability in Execute Program Action module is fixed. (Reported by Ezhil Krish)

Issues fixed in 15050

• In IBM i monitor, there were issues in clearing alarms although there were no data available for 'Problem Severity' attribute under 'Problem' tab.
• In REST API monitor, there were issues in adding the monitor when the JSON PayLoad field contained '=' symbol for POST and PUT Form Submission Methods.

Security Issues

• Multiple Post authenticated SQL injections while create/edit of Custom Monitor Type module is fixed. (Reported by Ezhil Krish)
• A Post authenticated SQL injection in URL monitor module is fixed. (Reported by Ezhil Krish)
• A Reflected XSS and CSRF vulnerability in Execute Program Action module is fixed. (Reported by Ezhil Krish)

Issues fixed in 15040

• In URL Sequence monitor, there were issues in collecting data since there were two headers present while creating the monitor with HAR file.
• In APM Insight, there were issues in editing or updating the agent configuration settings due to an exception that occurred after updating the MS SQL driver in backend database. (Broken since 15000)

Issues fixed in 15030

• Duplicate monitors were created for WebSphere server with Network Deployment mode due to issues in establishing connections with the backend database.
• In ServiceDesk Plus (SDP) integration, monitor groups from admin server were not synced to SDP CMDB while integrating SDP and during resync process.
• Subgroup names were not displayed properly for Capacity Planning reports in 'Reports' tab.

Issues fixed in 15020

• In Enterprise Edition, alarm template with actions other than email were shown as 'null' in Managed Server after syncing from Admin server in 'Configure Alarms' page.
• In Helpdesk integration, only 100 fields were loaded in 'Ticket Action' page although there were more than 100 fields in ServiceDesk Plus (SDP).
• Helpdesk integration updated to accommodate a change in response key internally while fetching available status details from ServiceDesk Plus (SDP) v11138.

Issues fixed in 15010

• In APM Insight, stack traces were not shown for SQL traces under Traces → Trace Details.
• In APM Insight, pop-up was not opened while viewing SQL Traces under Traces → Trace Details for Applications Manager plugin.
• In MS SQL monitor, alerts related to jobs were not cleared when data collection was disabled for jobs under Admin → Performance Polling → MS SQL.

Issues fixed in 15000

• In APM Insight home page, data was collected for the last one hour although time duration was selected for the last 30 minutes from the dropdown.
• Proxy password was not updated in MSSQL backend database alone. (Broken since 14650)
• There were issues in starting Applications Manager as a Windows service due to issues in loading configuration for Machine Learning thresholds. (Broken since 14870)
• In Enterprise Edition, there were issues in logging in as Operator when there were vCenter monitor groups with multiple datastores in Admin server.
• In Enterprise Edition, Machine Learning threshold was applied instead of Monitor Type Alarm Template to monitors in Managed Server. (Broken since 14870)
• In APM Plugin, garbled characters were shown while adding monitor groups for Japanese versions under Admin → Add/Discover → Monitor Group.
• There was a slowness in loading the Monitor Group details page when large number of monitors were associated in Monitor Group.
• There was a slowness in loading the 'Associate monitor to monitor group' page when there were large number of monitors present in Applications Manager instance.
• Issues were seen in collecting data for graphs shown under 'Performance' tab of monitors in Bulk Configuration view. (Broken since 14880)
• Page navigation was not working in both 'Performance' and 'Availability' tabs for monitors in Bulk Configuration view. (Broken since 14840)
• Page navigation was not working when 'Monitors' option was selected under 'Configure By' in Admin → Performance Polling → Optimize Data Collection. (Broken since 14510)
• While configuring alarms through template, there were issues in associating actions to attributes with Warning severity in 'Configure Alarms' page. (Broken since 14870)
• There were issues in associating Alarm Template to monitors that were disassociated from Monitor Group. (Broken since 14870)
• In Credential Manager, duplicate credential names were allowed while adding/editing credential details in Chinese installations of Applications Manager.
• In Self Help Tools page, garbled characters were shown for Chinese and Japanese installations under Admin → Self Help Tools.
• Issues were seen in saving Map View while creating Topology Map View widget.
• Incorrect values were shown for Downtime, Unmanaged time, and Scheduled Maintenance time attributes when Business Hour was chosen in Availability Reports for Monitor Groups.
• In Availability History report, option to delete Downtime was not shown for Monitor Groups created in Admin server.
• Issues were seen in generating Attribute report for CPU Core and Disk Utilization attributes in server monitors.
• In SAP server monitor, incorrect data was shown for Work process count details under 'Update' tab.
• In SharePoint Online monitor, there was a slowness in loading the monitor page when large number of sites were shown under the 'Site Statistics' table in 'Sites and Applications' tab.
• In Exchange server monitor, there was a slowness in collecting data when all the metrics were enabled under Admin → Performance Polling → Optimize Data Collection.
• In JBoss monitor, there were issues in establishing connections with the JBoss server due to improper handling of connection timeout for versions 7 and above.
• While updating a URL monitor, the page was getting redirected to home page on submit. (Broken since 14880)
• In Custom and Script monitors, tables were not sorted according to their order of creation in Monitor Details and Edit Monitor pages.
• In Real Browser Monitor (RBM), there were issues in performing playback from EUM agent in manually-installed Edge browsers.
• In ServiceDesk Plus (SDP) Integration, there was a performance issue in migrating from V1 to V3 APIs on upgrading Applications Manger to versions supporting SDP V3 APIs.

Oracle DB monitoring issues:

• In Oracle DB monitor, there was an issue in sorting the 'Free Bytes' attribute in ascending order for Tablespace details under 'Overview' and 'Tablespace' tabs.
• In Oracle DB monitor, values were incorrectly sorted on clicking the 'Percentage of Used Bytes' attribute under 'Tablespace' tab.
• Issues were seen in collecting data due to Out Of Memory issue in Oracle DB monitor.
• In Oracle DB monitor, error message was shown while collecting data for Backup Job Details and Running Backup Jobs due to improper handling of connection timeout during query execution.

Microsoft SQL monitoring issues:

• In MS SQL monitor, incorrect values were shown for 'Job Time' attribute under 'Jobs' tab.
• In MS SQL monitor, there were issues in collecting data for attributes under 'Mirroring details' in 'Database' tab.
• There was a slowness in collecting data for database metrics in MS SQL monitor.
• In MS SQL monitor, there were issues in adding the monitor after the support for Kerberos authentication was introduced.
• In MS SQL monitor, alerts were incorrectly raised for Disk Utilization percentage attributes of databases under 'Database' tab.

VMware monitoring issues:

• In VMware ESXi monitor, values were not shown for metrics under 'Datastore' tab. (Broken since 14790)
• In VMware ESXi monitor, discovered datastores were deleted and readded automatically under 'Datastore' tab. (Broken since 14790)
• In VMware ESXi monitor, data collection was occurring at irregular time intervals for metrics under 'Datastore' tab. (Broken since 14790)
• Datastore count was incorrectly shown in vCenter monitor group page.

Security Issues

• CVE-2020-35765: A Post Authenticated SQL injection vulnerability in ShowResource module of Mobile View is fixed.

Issues fixed in 14911

• There was a slowness in loading the 'Associate monitor to monitor group' page when there were large number of monitors present in Applications Manager instance.
• There were issues in associating Alarm Template to monitors that were disassociated from Monitor Group. (Broken since 14870)
• In Enterprise Edition, Machine Learning threshold was applied instead of Monitor Type Alarm Template to monitors in Managed Server. (Broken since 14870)
• There were issues in starting Applications Manager as a Windows service due to issues in loading configuration for Machine Learning thresholds. (Broken since 14870)
• While updating a URL monitor, the page was getting redirected to home page on submit. (Broken since 14880)
• In VMware ESXi monitor, values were not shown for metrics under 'Datastore' tab. (Broken since 14790)
• In VMware ESXi monitor, discovered datastores were deleted and readded automatically under 'Datastore' tab. (Broken since 14790)
• In VMware ESXi monitor, data collection was occurring at irregular time intervals for metrics under 'Datastore' tab. (Broken since 14790)

Security Issues

• A post authenticated SQL injection in MonitorGroupView feature is fixed. (Reported by Iggy Frankovic)

Issues fixed in 14910

• Blank page was shown on adding a monitor in APM Plugin. (Broken since 14770)
• In APM Insight monitor, there were issues in collecting data for Data throughput graph under 'Overview' tab. (Broken since 14890)

Security Issues

• A post authenticated SQL injection in AssociateMonitors feature is fixed. (Reported by Iggy Frankovic)

Issues fixed in 14900

• AlarmActions API returned only one annotation when 'ListAnnotations' action type was used for the given entry in JSON response.
• In Windows server monitor, duplicate entries were shown for Processor, Array, and Disk details under 'Hardware' tab when Windows was installed on HP hardware.

Issues fixed in 14844

• There was a slowness in loading the 'Associate monitor to monitor group' page when there were large number of monitors present in Applications Manager instance.
• Issues were seen in collecting data due to Out Of Memory issue in Oracle DB monitor.
• Blank page was shown on adding a monitor in APM Plugin. (Broken since 14770)
• VMware datastores were listed as separate monitors in Monitor Group View. (Broken since 14790)
• In VMware ESXi monitor, values were not shown for metrics under 'Datastore' tab. (Broken since 14790)
• In VMware ESXi monitor, discovered datastores were deleted and readded automatically under 'Datastore' tab. (Broken since 14790)
• In VMware ESXi monitor, data collection was occurring at irregular time intervals for metrics under 'Datastore' tab. (Broken since 14790)
• Proxy password was not updated in MSSQL backend database alone. (Broken since 14650)
• Infrastructure widget was not shown in Admin server for the operator and delegated admin user. (Broken since 14810)

Security Issues

• A post authenticated SQL injection in AssociateMonitors feature is fixed. (Reported by Iggy Frankovic)
• A post authenticated SQL injection in MonitorGroupView feature is fixed. (Reported by Iggy Frankovic)

Issues fixed in 14890

• In MS SQL monitor, attributes were not listed in the 'Select Attribute' dropdown for Availability Databases in 7/30 report.
• VMware datastores were listed as separate monitors in Monitor Group View. (Broken since 14790)
• Encryption Algorithm modified in Credential Manager to avoid security vulnerabilities and to support Extended ASCII characters in password.

Issues fixed in 14843

• Probe Registration Key authentication was not available while installing Managed server in APM Plugin Enterprise Edition.

Security Issues

• SQL injection in showResourceMSSQL module is fixed. (Reported by Iggy Frankovic)
• SQL injection in AlarmView module is fixed. (Reported by Whoami from VSEC Redteam)

Issues fixed in 14880

• In Topology Map View, incorrect details were shown on clicking the shortcut icons that were marked next to one another on the map.
• When a Monitor Group was renamed, the old name was still displayed for that Monitor Group in 'Current Snapshot' report.
• In Enterprise Edition, there were issues in fetching devices from OpManager when OpManager was integrated into the Admin server.
• In Server monitors, duplicate alerts were raised at every poll for 'Availability' attribute due to timestamp in RCA when the ping response obtained for that attribute was down.
• Blank page was shown when custom attributes were deleted in SNMP monitor. (Broken since 14870)

Security Issues

• CVE-2020-27733: Post Authenticated SQL Injection attack in AlarmView module is fixed.
• SQL injection in showResourceMSSQL module is fixed. (Reported by Iggy Frankovic)

Issues fixed in 14870

• In WebLogic monitor, there were issues in performing Bulk Import when Credential ID was used in CSV file.
• In Business View widget, blank page was shown on refreshing the page after enabling 'Show only Monitor Groups Status' option under View Settings → Display Properties.
• In Hyper-V monitor, there were issues in collecting data for Power, Fan, and Temperature details when Hyper-V was installed on HP hardware.
• There were issues in deleting MS SQL monitors from Applications Manager console.
• In MS SQL monitor, Subscription details were not shown for Publications under 'Replication Status' in 'Replications' tab.

Issues fixed in 14842

• There was a slowness in loading Applications Manager due to Out Of Memory issue in SSH mode of monitoring.
• In Exchange Server monitor, there were issues in configuring timeout due to some old running Powershell processes.
• In WebLogic monitor, error message popup was shown when credentials were selected using Credential Manager while adding the monitor. (Broken since 14770)
• 'Output settings' option was enabled automatically although the option was not configured while creating a new Script/Custom monitor. (Broken since 14660)
• While editing a Script monitor, incorrect host was shown under 'Choose the Host' option. (Broken since 14800)
• In Script monitor, RCA message was not shown when the server experienced connection timeout.
• In OpManager integration, OpManager connector was not working if OpManager was in version 12.5 or above.
• In Helpdesk integration, ticket flow was not working properly when ticket status was changed to other languages in ServiceDesk Plus.
• In ServiceDesk Plus OnDemand integration, there were issues in accessing the ticket details from 'Alarms' page when 'Launch Read-only ticket' option was enabled under 'Advanced Settings' in Admin → Add-on Settings → Product Settings.
• In ServiceDesk Plus and ServiceDesk Plus OnDemand integrations, there were issues in generating tickets from Applications Manager if custom fields were set in ticket action when SDP V3 APIs were used.

Issues fixed in 14860

• There were issues in installing Applications Manager with MS SQL backend due to presence of some special characters in 'Password' field.
• Users with Administration role were not able to update permissions for Operators/Users in Admin → User Management → Permissions.
• Probe Registration Key authentication was not available while installing Managed server in APM Plugin Enterprise Edition.
• Issues were seen in updating host and port details for Proxy Server under Admin → Connectivity → Proxy Server. (Broken since 14650)
• In WebLogic monitor, error message popup was shown when credentials were selected using Credential Manager while adding the monitor. (Broken since 14770)
• In File monitor, content match was working only for contents configured for the first severity status after enabling Content check for Remote Windows Server file location.
• In Script monitor, RCA message was not shown when the server experienced connection timeout.
• 'Output settings' option was enabled automatically although the option was not configured while creating a new Script/Custom monitor. (Broken since 14660)
• In Exchange Server monitor, there were issues in configuring timeout due to some old running Powershell processes.
• In ServiceDesk Plus OnDemand integration, there were issues in accessing the ticket details from 'Alarms' page when 'Launch Read-only ticket' option was enabled under 'Advanced Settings' in Admin → Add-on Settings → Product Settings.
• In ServiceDesk Plus and ServiceDesk Plus OnDemand integrations, there were issues in generating tickets from Applications Manager if custom fields were set in ticket action when SDP V3 APIs were used.
• In Helpdesk integration, ticket flow was not working properly when ticket status was changed to other languages in ServiceDesk Plus.
• In ServiceDesk Plus OnDemand integration, duplicate tickets were generated for 'Critical' or 'Warning' alarms and tickets were not closed for 'Clear' alarms due to issues in storing ticket reference in Applications Manager. (Broken since 14780)
• In OpManager integration, OpManager connector was not working if OpManager was in version 12.5 or above.
• Business Hour dropdown was hidden when calendar icon was clicked after choosing Custom time period in Availability and Health History report.
• While generating PDF for metrics in 'Configuration' tab under 'Global View', the page was getting redirected to home page in Enterprise Admin server.
• Error message was shown when data was not available for more than one report while executing Scheduled Reports under Admin → Schedule Reports.
• In Schedule Reports, there were issues in generating reports for 'Threshold and Action Profile CSV' Report Type under Admin → Schedule Reports.

Issues fixed in 14850

• Users were able to update the user profile with 'Super Administrator' role under Admin → User Management → Profiles. (Broken since 14690)
• Services, Processes, Database, and WebSphere MQ Queues were not shown in 'Associate Monitors to Monitor Group' page even after enabling under Admin → Server Settings → Monitor Group Settings. (Broken since 14700)
• While performing 'Execute Program' action manually, error message was shown although the action was executed successfully with Script Location as 'Remote Server' and Execution Mode as 'Telnet' or 'SSH'. (Broken since 14770)
• Issues were seen in associating a credential for a monitor from Admin → Credential Settings. (Broken since 14750)
• Error message was shown while creating a new Business Hour after enabling the 'Apply Threshold based on Business Hours' option from 'Edit Threshold Profile' page. (Broken since 14650)
• In ADDM, there were issues in triggering discovery from Admin server to Managed Servers. (Broken since 14800)

Issues fixed in 14841

• Users were able to update the user profile with 'Super Administrator' role under Admin → User Management → Profiles. (Broken since 14690)
• Issues were seen in updating host and port details for Proxy Server under Admin → Connectivity → Proxy Server. (Broken since 14650)
• In ServiceDesk Plus OnDemand integration, duplicate tickets were generated for 'Critical' or 'Warning' alarms and tickets were not closed for 'Clear' alarms due to issues in storing ticket reference in Applications Manager. (Broken since 14780)

Issues fixed in 14840

• In Oracle DB monitor, incorrect values were shown for 'Resource Used (%)' attribute under 'Resource Limit Details' table in 'Process' tab.
• In Capacity Planning report, overall status of monitors were incorrectly shown when the total number of data archived for 'CPU Utilization' attribute was higher than other attributes.
• Alerts were triggered much before the specified consecuting polling intervals due to issues in 'Polls to retry' option in Thresholds.
• In 'Alarms' tab, there were issues in clearing alarms for Managed server monitors from Admin server.
• While editing 'Performance Metric' and 'Tabular Data' widgets, attributes were not shown on choosing the 'Virtual Machine' monitor type. (Broken since 14640)

Issues fixed in 14830

• Threshold profile CSVs were incorrectly aligned in spreadsheet due to the presence of comma symbol in threshold values.
• There was a mismatch in the availability status shown in the monitor dashboard and 'Availability Downtime' report.
• In Windows server monitor, there were issues in starting/stopping/restarting services for users with 'Operator' role although permissions were granted under Admin → User Management → Permissions → Operator Permissions.
• There were issues in collecting data when WebSphere monitors were added with non-admin user credentials for WebSphere 9.
• When proxy was configured without any host exclusion, 'Alarms' tab was not accessible due to issues in setting proxy for ServiceDesk Plus connectivity even when Helpdesk was not configured.
• APM Insight instances were accessible to unauthorized users with 'Operator' role.

Issues fixed in 14820

• Graph representation of APDEX Score was not shown in APM Insight. (Broken since 14440)
• Error message was shown on enabling the 'Enable RFC' option for SAP server under Admin → Performance Polling → Optimize Data Collection.
• Incorrect units were shown for 'Recent Lock Time', 'Recent Lock Wait Time', and 'Recent Server Time' attributes under 'Enqueue' tab in SAP server monitor.
• Warning messages were shown in log files of Applications Manager due to insufficient permissions while registering MBeans for WebLogic 10 monitors.
• In Exchange server monitor, an invalid row was shown under 'AD Access Domain Controllers' table in 'Overview' tab.

Issues fixed in 14811

• In 'Performance Metric' widget, incorrect values were shown on choosing Script monitors and its associated attributes under 'Multiple Monitors' category.
• In Hyper-V monitor, there were issues in collecting data when Hyper-V was installed on HP hardware.
• When a replica was removed and re-added in SQL server, the Availability Replica and Availability Database details were not shown in MS SQL monitor.
• When a subscription was removed from MS SQL server, its associated alerts were not cleared in Applications Manager.
• There were issues in adding Database Query Monitor for Oracle. (Broken since 14790)
• JBoss monitors went down due to issues in establishing connection with JBoss server for JBoss v5. (Broken since 14620)
• In APM Insight monitor, choosing 'Select Date' under Duration and selecting an earlier date would show no data.

Issues fixed in 14800

• Added validation for Product Name while integrating OpManager and Site24x7 with Applications Manager under Admin → Add-On settings.
• Incorrect values were shown for 'Availability' attribute in 'Availability, Health and Alarms Summary' widget.
• In Downtime Summary Report mail, non-SSL port link of Applications Manager was used even after it was disabled.
• Garbled characters were shown in Scheduled Reports mail if the Schedule Name contained Chinese characters.
• While scheduling reports, there were issues in generating MS SQL Job History and Performance Reports if the monitor name contained special characters.
• Renewed Apple Push Notification Certificate for Applications Manager Mobile App.
• Alert entries were deleted in the backend database whenever Applications Manager was restarted.
• When a ticket was closed in ServiceDesk Plus MSP or ServiceDesk Plus with V3 API-supported build, alert was not cleared in Applications Manager.
• While accessing the 'Create a new ticket action' form, filtering technicians based on a group does not fetch the list of technicians using the V3 API of ServiceDesk Plus.
• When a ticket was marked with the status 'On Hold' in ServiceDesk Plus, it was not being updated with notes for the subsequent alarms from Applications Manager while using the V3 API.

Issues fixed in 14783

• Alerts were triggered much before the specified consecuting polling intervals due to issues in 'Polls to retry' option in Thresholds.
• When proxy was configured without any host exclusion, 'Alarms' tab was not accessible due to issues in setting proxy for ServiceDesk Plus connectivity even when Helpdesk was not configured.
• Users were able to update the user profile with 'Super Administrator' role under Admin → User Management → Profiles. (Broken since 14690)
• Issues were seen in updating host and port details for Proxy Server under Admin → Connectivity → Proxy Server. (Broken since 14650)
• In ServiceDesk Plus OnDemand integration, duplicate tickets were generated for 'Critical' or 'Warning' alarms and tickets were not closed for 'Clear' alarms due to issues in storing ticket reference in Applications Manager. (Broken since 14780)

Issues fixed in 14781

• When a ticket was closed in ServiceDesk Plus MSP or ServiceDesk Plus with V3 API-supported build, alert was not cleared in Applications Manager.
• While accessing the 'Create a new ticket action' form, filtering technicians based on a group does not fetch the list of technicians using the V3 API of ServiceDesk Plus.
• JBoss monitors went down due to issues in establishing connection with JBoss server for JBoss v5. (Broken since 14620)
• SSL Certificate details were overwritten when Applications Manager was upgraded for users with version 14270 or above.
• There was a slowness in loading Applications Manager due to Out Of Memory issue in SSH mode of monitoring.
• Renewed Apple Push Notification Certificate for Applications Manager Mobile App.
• Provided option to specify Timeout in Exchange Server monitor.
• Alert entries were deleted in the backend database whenever Applications Manager was restarted.

Issues fixed in 14790

• Consent message to perform Applications Manager backup was not shown while installing service pack through Console mode.
• In Admin server, health and availability status were not shown for some monitors in Bulk Configuration view.
• In Sybase monitor, the value for 'Log Used (%)' attribute was miscalculated under 'Database Details' table.
• Alerts were not synced to AlarmsOne from Admin server when option to push alerts from Managed Servers to Admin server was disabled.
• In APM Insight, 'Error count (count)' attribute has been changed to 'Errors (%)' in 'Overview' tab.

Security Issues

• CVE-2020-10816: Unauthenticated remote user is allowed to register managed servers via AAMRequestProcessor servlet is fixed.

Issues fixed in 14780

• Adaptive Thresholds were not created if the Severity fields contained decimal values for Custom Expressions.
• While editing Performance Metric widget for Windows monitor type, 'Node State' metric was not shown under 'Show Additional Metrics' for Windows server versions 2008 and above. (Broken since 14640)

Issues fixed in 14770

• Time filters were not applied for the alarms exported as PDF or Excel in 'Alarms' tab.
• List thresholds API returned no response if the instance had any threshold with secondary conditions.
• When Servicedesk Plus was integrated in Applications Manager and CI Sync was enabled, the links to CI details and Relationship map of monitors from Bulk configuration and Monitor details pages were broken due to vulnerability fixes in Servicedesk Plus.
• In Oracle DB monitor, details under 'Session' and 'Query' tabs were shown only if data collection for Lock details were enabled. (Broken since 14720)
• Oracle PDB monitors were discovered by default even when 'Discover PDB' option was not enabled. (Broken since 14750)
• SSL Certificate details were overwritten when Applications Manager was upgraded for users with version 14270 or above.
• Issues were seen in importing AD user when the Display Name contained restricted characters in Admin → User Management.
• In MS SQL monitor, there were issues in updating the MS SQL user credentials while editing the user details under 'Users' tab. (Broken since 14330)

Security Issues

• CVE-2020-15521: XSS via UnAuthenticated url '/jsp/header.jsp' is fixed.

Issues fixed in 14760

• There were issues in deleting Monitor Group Alarm Template associated to a monitor's scalar attribute when the Monitor Group of that monitor was deleted.
• Added REST API support to update the schema for custom attributes in REST API monitor.

Issues fixed in 14750

• In IBM WebSphere MQ monitor, attributes were taking a long time to load under 'Queues' and 'Channels' tabs.
• In ServiceNow integration, there were issues in setting impact for ServiceNow incidents creation for new alerts in Application Manager.
• Garbled characters were shown in pop-up on clicking the 'Update Agent Configuration' button under APM Insight Instance in Japanese installation of Applications Manager.
• Blank page was shown on clicking the Alarm details shown in 'Availability, Health and Alarm Summary' widget.
• In ADDM, Windows Server 2016 was added as 'Windows 7' during ADDM discovery.

Microsoft SQL monitoring issues:

• Query for performance counter attributes shown in 'Overview' and 'Session' tabs were taking more time to execute and returned unwanted rows.
• Database Connection details under 'Sessions' tab were shown only when data collection for Session details were enabled in Admin → Performance Polling → MS SQL tab.
• There were issues in collecting data due to improper handling of connection timeout during query execution.

Oracle DB monitoring issues:

• Jobs and User details were removed and re-added in Applications Manager's backend database due to improper handling of query timeout.
• In Oracle DB and Oracle PDB monitors, the query used to fetch Free Space details was slow and was throwing timeout alerts at times.
• There were issues in clearing user password expiry alert messages which created data collection thread blocks in the backend.
• Issues were seen in updating the password for Oracle DB monitors in Credential Manager from the Admin server.

Security Issues

• CVE-2020-15533: Unauthenticated SQL Injection in AlarmEscalation module is fixed.
• CVE-2020-15927: SQL Injection attack possible in 'resourceid' parameter of SAP module is fixed.
• CVE-2020-16267: SQL Injection attack possible in 'haid' parameter of RCA module is fixed.

Issues fixed in 14740

• In MS SQL monitor, different thresholds could not be configured for each type of backup taken for the same database in 'Backup Details' table under 'Backup/Restore' tab.
• Failure in data collection of MySQL monitor due to improper handling of connection timeout.
• There were issues in establishing connections with the MySQL server while adding MySQL monitor without enabling SSL for versions 8 and above.
• In Exchange Server and Windows Cluster monitors, there were issues in collecting data due to presence of apostrophe symbol in the 'Password' field while adding/editing the monitors.
• Included customizable option to pass on the cookies from previous URL to next URL in URL Sequence monitor.
• Issues were seen in creating ticket action if SDP MSP was integrated in Applications Manager. (Broken since 14640)
• There were issues in updating the threshold details for numeric attributes in 'Configure Alarms' page. (Broken since 14730)

Security Issues

• CVE-2020-15394: Unauthenticated Remote Code Execution via SQL injection in REST API module is fixed.

Issues fixed in 14730

• In Monitor Group view, names of monitor groups displayed incompletely for non-English characters in Enterprise Edition admin server.
• In MS SQL DB monitor, alarm could not be configured for value of CHECKDB command as 'DBCC Never Run' under 'Database' tab.
• Length of 'Search Filter' parameter increased in 'Import Users from Active Directory/OpenLDAP' page after creating new user in Admin → User Management.
• In WebSphere monitor, JDBC defined in cell scope was not listed under 'JDBC' tab for WebSphere version 9 in network deployment mode.
• Issues were seen while adding OpenShift monitors if the Username and Password fields contained special characters.

Security Issues

• CSRF to SQL Injection leading to RCE via url '/RestAPIAction.do' is fixed. (Reported by Lukasz Bialek)
• CVE-2020-14008: Authenticated Remote Code Execution as admin via Java class reflection in WeblogicReference is fixed by restricting certain file uploads.

Issues fixed in 14720

• In String threshold, length of string value field increased from 100 to 1000 characters.
• In 'Admin → Schedule Reports → New Schedule Reports' page, there were issues in configuring Recurring Details for Weekly and Monthly time settings in IE browsers.
• In MongoDB monitor, there were issues in collecting data as a whole due to exceptions occurred in 'Network Traffic sent' and 'Network Traffic received' attributes.
• When SDP v.11117 is integrated in Applications Manager, the values in 'Create a new ticket' action form do not get populated.
• Included customizable option to show database details as in Applications Manager builds before 13910 under 'Database' tab in MS SQL monitor.

Issues fixed in 14710

• In Citrix Hypervisor monitor, data representation converted from bytes/second to kilobytes/second for 'Data Transmit' and 'Data Received' attributes under 'Network' tab.
• KVM monitor enhanced to show 'Disk Block Details' under 'Disk' tab for virtual machines.
• Blank page was shown while trying to add a Web Server monitor with a valid hostname and an invalid port.
• Issues were seen in updating and deleting SLA details under Admin → Manage SLA. (Broken since 14680)
• In String threshold, 'equal to' conditions were not applied if the monitored value contained whitespaces at the start/end of the string.

Issues fixed in 14700

• In Tomcat monitor, JDBC details were not shown if Spring-managed pool was used in the Tomcat server.

Issues fixed in 14685

• Issues were seen in importing AD user when the Display Name contained restricted characters in Admin → User Management.

Security Issues

• CVE-2020-15521: XSS via UnAuthenticated url '/jsp/header.jsp' is fixed.

Issues fixed in 14684

• Issues were seen in creating ticket action if SDP MSP was integrated in Applications Manager. (Broken since 14640)
• Issues were seen in updating the password for Oracle DB monitors in Credential Manager from the Admin server.
• Garbled characters were shown in pop-up on clicking the 'Update Agent Configuration' button under APM Insight Instance in Japanese installation of Applications Manager.
• In Exchange Server and Windows Cluster monitors, there were issues in collecting data due to presence of apostrophe symbol in the 'Password' field while adding/editing the monitors.
• SSL Certificate details were overwritten when Applications Manager was upgraded for users with version 14270 or above.

Security Issues

• CVE-2020-14008: Authenticated Remote Code Execution as admin via Java class reflection in WeblogicReference is fixed by restricting certain file uploads.
• CSRF to SQL Injection leading to RCE via url '/RestAPIAction.do' is fixed. (Reported by Lukasz Bialek)
• CVE-2020-15394: Unauthenticated Remote Code Execution via SQL injection in REST API module is fixed.
• CVE-2020-15533: Unauthenticated SQL Injection in AlarmEscalation module is fixed.
• CVE-2020-15927: SQL Injection attack possible in 'resourceid' parameter of SAP module is fixed.
• CVE-2020-16267: SQL Injection attack possible in 'haid' parameter of RCA module is fixed.

Issues fixed in 14683

• Attributes were not listed properly for Cloud monitors in Admin → Enable Reports page. (Broken since 14490)
• Issues were seen while adding OpenShift monitors if the Username and Password fields contained special characters.
• Maximum number of connections per device through SSH/Telnet increased up to 20 connections per time from Applications Manager server to remote servers.
• Issues were seen in updating and deleting SLA details under Admin → Manage SLA. (Broken since 14680)

Issues fixed in 14690

• Issues were seen while updating the username and password credentials of LDAP monitors from Bulk Configuration View.
• Attributes were not listed properly for Cloud monitors in Admin → Enable Reports page. (Broken since 14490)

Issues fixed in 14682

Security Issues

• CVE-2020-9484: Disabled Tomcat session persistence across restart and possible deserialization vulnerability.

Issues fixed in 14681

• Duplicate display names were shown for APM Insight monitor instances running in the same host for different applications.
• There were issues in collecting data for Log Shipping details under 'Replications' tab in MS SQL monitor.
• In MySQL monitor, there were issues in collecting data for metrics under 'Performance' and 'Session' tabs for MariaDB servers.
• User Management modified to restrict special characters in 'Username' field.
• In Windows monitor, Service Name was not updated after modifying in Service Template under Admin → Discovery & Data Collection → Template Library.
• In Linux monitor, option to Test Credential was not working after editing the monitor details added via SSH key.

Security Issues

• Option introduced to end active session(s) on user role update. (Reported by ManhTD)

Issues fixed in 14670

• Option to update IP/Hostname added in Sybase monitor page.
• Issues were seen while updating IP for .NET monitors in Bulk Configuration View.
• In MS SQL monitor, there were issues in performing Bulk Import of monitors for MS SQL servers.

Issues fixed in 14660

• Units representation changed from kbps to KBps for kilobytes per second in VMware, RHV, and Citrix Hypervisor monitors.
• Monitors deleted in Managed servers were not removed in Admin server.
• Length of 'Trap Listener Name' field increased from 40 to 255 characters in SNMP Trap Listener.
• In RBM monitor, option to View Screenshot History was not working from Admin server.
• In Server monitor, associated monitor group details were not shown for both Admin and Managed servers.
• In SNMP Trap Listener, 'Trap OID' field did not allow '.*' character for SNMP Trap version v2c. (Broken since 14130)

Security Issues

• Unauthenticated SQL Injection in /servlet/DowntimeScheduler via parameter 'TASKNAME' is fixed. (Reported by Costin Ivancea)
• Executable File upload via /FileUploadServlet/ is restricted to .p12 files. (Reported by Wei)
• Path Traversal on the parameter TileName in request /showTile.do is fixed. (Reported by ManhTD)
• XSS through /j_security_check request in parameter j_username is fixed. (Reported by ManhTD)
• Added restriction to submit only WhiteListed Commands for Ping monitor under Admin → Performance Polling → Ping Command. (Reported by Wei)
• CVE-2017-11738: Unauthenticated SQL Injection in '/auditLogAction.do' via parameter 'haid' is fixed.

Issues fixed in 14630

• Error page was shown after uploading the MIB files in SNMP monitor.
• In Capacity Planning Reports page, server state was wrongly mentioned as 'Oversized' for Idle Servers.
• Number of monitors shown in the 'Availability History' widget increased from 25 to 10000.
• Warning message to change the password is shown now when admin user has logged in with default credentials.

Issues fixed in 14620

• Issues were seen while re-adding the deleted Windows server monitors in Applications Manager.
• In Windows server monitor, there were issues in collecting data for CPU Core Utilization and Disk Utilization after re-adding the deleted monitors.
• Bar graph was not shown in 'Performance Metric' widget when 'Show graph for additional metrics' option was enabled.
• Issues were seen in establishing SSL connection for Domain Configurations in User Management.
• PostgreSQL monitor enhanced to show number of connections per database under 'Database details' in 'Database' tab.
• Length of String and Number attributes increased from 100 to 10000 in Custom new monitor type.
• In MS SQL monitor, the queries used to collect data for 'Performance' tab increased the TempDB utilization to its maximum value.
• In Reports, start day has been changed from Sunday to Monday while viewing last week period data.

Security Issues

• CVE-2019-19800: Remote unauthenticated user able to disclose file names under /working directory via FailOverHelperServlet is fixed.
• File uploaded via FileUploadServlet has traceable name and can be an executable file is fixed. (Reported by Wei)

Issues fixed in 14610

• Option to exclude the 'faultstring' error check added in Web Services (SOAP) monitor.
• In APM Insight, unwanted pop-ups were showing up on clicking the 'Errors' subtab under 'Transactions' tab when the transaction is of both background and error type.
• There were issues in collecting data for Summary, Garbage Collector and Thread information under 'JVM' tab of APM Insight monitor.

Issues fixed in 14600

• SNMP v3 monitor health status showed as 'down' after the monitored server was restarted.
• In SNMP Trap Listener, alarms were not generated for the traps that contain Enum integers.

Security Issues

• CVE-2019-19799: Unauthenticated disclosure of license-related information via servlet WieldFeedServlet is fixed.

Issues fixed in 14534

• There were issues in installing Applications Manager Plugin v14533 for OpManager v12.4.196.

Issues fixed in 14533

• Warning message to change the password is shown now when admin user has logged in with default credentials.
• Added restriction to submit only WhiteListed Commands for Ping monitor under Admin → Performance Polling → Ping Command.

Security Issues

• CVE-2019-19800: Remote unauthenticated user able to disclose file names under /working directory via FailOverHelperServlet is fixed.
• File uploaded via FileUploadServlet has traceable name and can be an executable file is fixed. (Reported by Wei)

Issues fixed in 14532

• In APM Insight, unwanted pop-ups were showing up on clicking the 'Errors' subtab under 'Transactions' tab when the transaction is of both background and error type.
• There were issues in collecting data for Summary, Garbage Collector and Thread information under 'JVM' tab of APM Insight monitor.

Security Issues

• CVE-2019-19799: Unauthenticated disclosure of license-related information via servlet WieldFeedServlet is fixed.

Issues fixed in 14590

• MS SQL monitor was not getting deleted from the Applications Manager console.
• In MS SQL monitor, there were issues in collecting data for the availability databases if more than one secondary replica was configured under an AlwaysOn Availability Group.
• There were issues in starting up Applications Manager Plugin with PostgreSQL backend. (Broken since 14540)

Security Issues

• SQL Injection leading to privilege escalation in /showCustomReports.do via parameter 'report' is fixed. (Reported by Anh Vu from Viettel Cyber Security)

Issues fixed in 14580

• Issues were seen while updating the value for 'Urgency' field in ServiceNow integration.
• In MS SQL monitor, RCA message for skipped jobs were not cleared even after disabling the 'Alert Skipped Jobs' option under Admin → Performance Polling.
• Incorrect value was displayed for 'Today's Uptime' in RBM monitor page.
• There was an issue in collecting data for 'Response Time' attribute of server monitor, when Applications Manager is installed as Japanese in Japanese OS.
• Root Cause Analysis enhanced to limit the length of RCA messages upto 10000 characters.

Issues fixed in 14570

• AS400 monitor enhanced to sort health status based on severity for monitored data queues.
• While adding a REST API monitor, Pay Load field containing more than 100 characters were redirected to Applications Manager homepage on submission.
• Windows 2016 and 2019 servers were added as Windows 7 servers during ADDM discovery.
• During ADDM vCenter discovery, password field containing special characters were not accepted.
• In the History data page, lengthy attribute names were not shown in the 'Select attribute' dropdown.

Issues fixed in 14560

Security Issues

• SQL Injection RCE vulnerability via MyPage.do with parameter template_resid is fixed. (Reported by Hamzah Alahmed from Saudi Information Technology Company (SITE))

Issues fixed in 14531

• In APM Insight home page, options to show and copy the license key were not working in Mozilla Firefox and Microsoft Edge browsers.
• In Applications Manager Plugin, graphs were not being displayed in addition to frequent pop-ups in APM Insight.
• Application Details page of APM Insight faced more page load latency.

Security Issues

• SQL Injections via /swMgmt.do with parameter 'checkbox' is fixed. (Reported by Jason Corma from Taiwan)
• SQL Injection RCE vulnerability via /showReports.do with parameter 'resourceid' is fixed. (Reported by Anh Vu)

Issues fixed in 14550

• While viewing QoS Worldwide view tab, a blank popup was being shown on clicking over the widget.
• In Amazon DynamoDB, data collection was happening for 'Streams' and 'Minimum Maximum Statistics' metrics at every poll irrespective of polling status configured in Admin → Performance Polling.
• In Configure Mail Server, TLS version 1.2 authentication was not supported.
• In Applications Manager Plugin, 'Username' field was accepting only for case-sensitive values.
• In Support tab, option to create and upload Support Information File (SIF) was not working.
• Support Information File (SIF) size capacity increased from 500MB to 2GB.
• Issues were seen while creating shortcuts with Japanese characters in Topology Map View.
• In SNMP Trap Listener, incoming trap with same OID as that of the configured trap listener was not being matched when the incoming trap's OID does not precede with '.' symbol.
• In MS SQL monitor, the value for 'Expiration Status' metric was always showing as 'Expired' while displaying Subscription details of Publications under Replications tab.
• AS400 monitor enhanced to sort health status based on severity for monitored jobs and subsystems.
• In APM Insight home page, options to show and copy the license key were not working in Mozilla Firefox and Microsoft Edge browsers.
• In Applications Manager Plugin, graphs were not being displayed in addition to frequent pop-ups in APM Insight.
• Application Details page of APM Insight faced more page load latency.
• When Self-Monitoring is enabled, false alerts related to polling delay were seen, for monitors whose poll interval was changed from the default value.

Security Issues

• SQL Injections via /swMgmt.do with parameter 'checkbox' is fixed. (Reported by Jason Corma from Taiwan)
• SQL Injection RCE vulnerability via /showReports.do with parameter 'resourceid' is fixed. (Reported by Anh Vu)

Issues fixed in 14530

• In Websphere monitoring, duplication of monitors were taking place for network deployment mode. (Broken since 14430)
• Data collection was not happening for Websphere monitors with base deployment mode. (Broken since 14430)

Issues fixed in 14520

• Issue found in listing file names under /working directory through FailoverHelperServlet.

Issues fixed in 14510

• In Database Query monitor, Windows authentication for MSSQL database was not working. (Broken since 14130)

Issues fixed in 14500

• Configure Alarm Templates were not being applied for third-level tabular metrics.
• In IBM MQ Broker, Message flows were not monitored for Applications, Library, and Rest APIs.
• In ADDM Edit discovery, Device type were not being discovered for already added unknown monitors.

Issues fixed in 14490

• In Schedule Reports, "Selecting number of monitors" option was included for capacity planning.
• In Availability Report, the value for attribute "Mean Time Between Failure (MTBF)" was being miscalculated.
• While creating a URL monitor from admin server the page was getting redirected to home page on submit after selecting the specific managed server. (Broken since 14460)
• Edit request in Windows performance counters monitor was getting redirected to home page. (Broken since 14460)
• Certificate file upload from admin to managed server failed when URL monitor was created from admin server.
• In Support tab, issues were seen in triggering heap dumps for JVM.
• Issues were seen in creating an Oracle Cloud monitor when tags were configured in the compartments of tenancy.
• In Web Applications Group page, other tabs were not working after navigating from Business view tab.
• In MySQL monitor, data was not being shown in Replication and Configuration tabs for users not having Superuser privilege.

Issues fixed in 14480

• While creating Microsoft Dynamics AX monitor, issues were seen while fetching both WMI and AX credentials using Credential Manager.
• In Attribute History Report, value for "95th percentile" was included in PDF report.

Issues fixed in 14470

• In MS SQL monitor, incorrect value was being displayed under Clusters tab when the user was logged in as Operator in Applications Manager.
• In JBoss monitor, Product Name and version attributes were found to be wrong/empty for some versions of JBoss.
• While integrating AlarmsOne in APM Plugin, the page was getting redirected to home page on submit.

Issues fixed in 14460

• Error popup was being shown on selecting the Display Properties option under Business View tab available in home page.
• In Kubernetes monitor, no data were being shown for some attributes in the Persistent Volumes table.
• In Rest API Action, response mail content was found to be improper for the configured mail ID.
• Script monitor creation failed when Local Command mode was chosen in Linux build.
• In Real Browser monitor, if the recorded script contained DOM value as the primary identifier, data collection was not happening.
• In Real Browser Monitor, Test Playback was failing when the password value was hidden in the playback script.
• In HAProxy monitor, the values were being miscalculated for a few attributes.

Issues fixed in 14450

• In MySQL monitor, alarm generated for "Open Connections" was not escalated to the monitor's health.
• While adding AD monitor, there were issues in fetching credentials using Credential Manager.
• Installation issues were seen while configuring MS SQL DB server in Applications Manager if the SQL server password field contained "&" symbol.
• APM Plugin was starting the User sync process even before taking the Auth token from OPM DB.

Issues fixed in 14440

• In Azure Virtual Machine, no data was being loaded for Azure diagnostic agent's performance metrics.
• In About settings tab, option to perform Easy Upgrade was not working. (Broken since 13510)

Issues fixed in 14430

• Availability of the server discovered in WebSphere ND monitor is down if the name contains space in it.
• Issue in retrieving Website statistics and Application Pools of IIS Server when the same host was added as different monitor type.

Security Issues

• CVE-2019-19475: Archive mode configuration of bundled PostgreSQL database is set to 'off' by default.

Issues fixed in 14401

• While configuring alarm template for Monitor Type in the admin server, the health and availability of the monitors were not getting synced to the Managed Servers.
• 'Show All Causes' icon in the RCA of the monitor was not working.
• Monitor displayname was being shown as "null" in the Availability Report Page. (Broken since 14360)
• While adding Oracle DB monitor, the username field containing "#" symbol was not being accepted by Oracle DB.

Issues fixed in 14420

• While configuring alarm template for Monitor Type in the admin server, the health and availability of the monitors were not getting synced to the Managed Servers.
• Error page was being shown on clicking the "RHEV Virtual Infrastructure" option under "Monitor Group" in the Chinese language build.
• Monitor displayname was being shown as "null" in the Availability Report Page. (Broken since 14360)
• Linux command for Inode monitoring was not displaying a portable output.
• Under Downtime Scheduler, the local time shown in the start time and end time of the custom schedule was removed as it was found to be confusing with the actual time zone configured.
• While adding Oracle DB monitor, the username field containing "#" symbol was not being accepted by Oracle DB.

Issues fixed in 14410

• A compromised user account of "Authenticated Users" group could modify PostgreSQL configuration by executing an arbitrary command to escalate privileges.

Issues fixed in 14400

• Ticket details for Service Now integration were not updated properly. (Broken since 13990.)
• In SNMP Trap Listener, junk characters were shown in trap message.
• In Admin → Performance polling → MS SQL, "All" option under Monitors dropdown was not working if monitor group was selected at the time of adding monitor.
• There was an issue in dynamic table creation when MySQL was migrated to PGSQL database.
• Auto-refresh of dashboard was not implemented after the set time.

Issues fixed in 14361

• Test playback from Edit Playback Script window of RBM was not working. (Broken since 14330).
• Network devices were getting deleted and added during every subsequent update of Devices and Alarms from External Connectors(Broken since AppManager version 14330).
• In APM Plugin, junk characters were sent as alert to OPM instead of proper Japanese characters. (Broken since 14310).
• Ticket details for Service now integration were not updated properly. (Broken since 13990.)
• Monitor group's description field rendered empty content if it contained special characters.
• There was an issue in getting downtime data using REST API 'type' parameter for period values 3,2 and 11 when a new monitor was added.
• Replication data was not properly cleared when a MySQL DB monitor was deleted.
• Business Service group could not be created.

Issues fixed in 14390

• Monitor group's description field rendered empty content if it contained special characters.
• Ping monitor data for Japanese servers wasn't shown.
• Monitor group names with chinese words looked garbled.
• When the list of users along with user group was imported, if the display name had a comma in it, users weren't imported properly.
• Recent Alarms widget not shown in the dashboard.

Issues fixed in 14380

• Network devices were getting deleted and added during every subsequent update of Devices and Alarms from External Connectors(Broken since AppManager version 14330).
• There was an issue in getting downtime data using REST API 'type' parameter for period values 3,2 and 11 when a new monitor was added.
• In APM Plugin, junk characters were sent as alert to OPM instead of proper Japanese characters. (Broken since 14310).

Issues fixed in 14370

• Test playback from Edit Playback Script window of RBM was not working. (Broken since v14330).
• Text value in widgets appeared small on big screen.
• Support to configure custom status URL for HAProxy monitor was added.
• Apple push notification certificate was renewed.

Security Issues

• SQL injection via serverID parameter in /servlet/mas_servercmd is fixed (ZVE-2019-6227).

Issues fixed in 14332

• Apple push notification certificate was renewed.
• The "Retry immediately if error occurs" option in URL monitor was not working.

Issues fixed in 14360

• On enabling self monitor option in Admin Server, false alert was sent for sync delay in managed server for which sync was disabled manually.
• When Applications Manager was installed in a chinese machine, availability of servers which were down weren't shown as such.
• The "Retry immediately if error occurs" option in URL monitor was not working.

Issues fixed in 14350

• Datacollection mechanism of PHP monitor was altered to support higher level of ciphers.
• There was an error in collecting Transactions/Min attribute data, when "Collect SQL Database metrics once in an hour" is enabled from Admin → Performance polling → MS SQL.

Issues fixed in 14331

• In Kubernetes monitor, performance polling key was not updated in managed server when its value was changed from admin server (Broken since 14180).
• In Website Content Monior, Script Threshold(%) and Text Threshold(%) could not be set to 0 (Broken since 14130).
• Support for IPv6 in URL Monitor added.
• In Openstack monitor, there was an issue with fetching the project-scoped Token-ID information via API.
• When backup/server.xml connector ports contained hardcored values instead of WEBSERVER_PORT and SSL_PORT values, users were unable to access APM after applying PPM.

Issues fixed in 14340

• Support for IPv6 in URL Monitor added.
• Attribute report for HAProxy monitor showed "no data available".
• When a PDF report was generated for alarms, the time format showed in the report differed from UI.
• Attribute report for the EUM monitors associated to monitor group showed "no data available".
• In Openstack monitor, there was an issue in fetching the project-scoped Token-ID information via API.
• In EUM monitors, data collection occured every 5 minutes irrespective of polling interval.
• In Kubernetes monitor, performance polling key was not updated in managed server when its value was changed from admin server (Broken since 14180).
• Available devices was not shown when 'All' Category was selected in Topology Map View.
• In Website Content Monior, Script Threshold(%) and Text Threshold(%) could not be set to 0 (Broken since 14130).
• Virtual Machines with same resourcename in various Hyper-V servers were not discovered.

Issues fixed in 14330

• In JBoss EAP 6, JDBC details were not shown when "waitCount" attribute was absent.
• Tomcat (other languages) : Configuration tab values were empty.
• Web User Experience monitor was not showing data under the Browser and Device details tab.
• SSL Support was not working for Postgres Monitor.
• Link to add other monitors inside Server monitor details page was broken (Issue since 14130).
• In VMware ESX, Xen Server and Nutanix monitors, "VM Discovery → Discover VMs but do not monitor metrics" option wasn't working.
• There was an issue while configuring Website Statistics & Application Pools for IIS server (Broken since 14280).

Issues fixed in 14310

• All monitors, even those which were not associated to 'operator' user, were displayed in the inventory report for 'operator' type users.
• In Oracle DB -> Tablespace tab, 'allocated bytes' shown for tablespaces of type "TEMPORARY" was incorrect when it was associated with multiple datafiles.
• In Oracle DB monitor, there was an issue in the data collection of TableSpace details for the monitors in standby mode with read access.

Issues fixed in 14300

• If the RCA Message contained more than one link, only one was shown in the email content.
• If the business hour was applied and .pdf file of Availability percentage report was generated for multiple monitors, it showed incorrect overall availability.
• In SNMP mode, disk utilization was wrongly calculated if one of the OID was missing in between the sequence.
• There was an issue while adding Query monitor with special characters using AddMonitor Rest API.

Security Issues

• CVE-2019-15104, CVE-2019-15105: NewThresholdConfiguration.jsp allowed an user to execute malicious SQL statements through "resourceId" parameter.

Issues fixed in 14190

• Uptime scale in Availability history widget in the Enterprise Edition Admin server was not properly aligned when more than 15 rows were present.
• For SDP-OD, on-hold tickets were being re-opened when a ticket was updated, instead of adding the update as notes.

Issues fixed in 14180

• Availability trend and outage comparison report for “All Monitor Group” displayed no data when the time period was changed. 
• In MS SharePoint Server monitor, scalar attributes were being added as SharePoint Services.

Security Issues

• CSRF vulnerability: An attacker could craft an URL in such a way that when an admin user is made to access this a new admin account will be created without his consent hence compromising security.
• Session Termination: When an account user updates his password in one of his browsers, we now terminate all the existing sessions except current session of that account.
• SQL Injection vulnerability: While adding a Database Query Monitor, users could bypass the select query check and do DML/DDL operations.
• Sensitive Data Exposure: Monitor Password Disclosure issue in the Edit screen page for monitors is removed
• Remote Code Execution vulnerability in Execute Program Action via the “View Actions” functionality.

Issues fixed in 14170

• The option to change the logo under "Report Settings" was not working for the dashboard reports sent via schedule reports.
• We have encrypted the keystorepass and truststorepass in backup/server.xml and server.xml files.
• In RabbitMq monitoring, we’ve added a new attribute “State for Queues”.
• Users could not add a monitor using the Add attributes link inside JMX/SNMP Dashboard monitor. (Broken since Build 14130).

Issues fixed in 14160

• Category and sub-category fields were not being assigned in SDP-MSP if special XML character & was present.

Issues fixed in 14150

• When only subgroups are associated in an operator account, users were getting the response “Invalid API request” in the mobile app.
• Users received inconsistent results when using the GetDowntimeDetails Rest API with the showFullDetails parameter for Daylight Saving Time.
• Removed the Custom Attributes Tab in the monitor and added all memory pools details under JVM Memory for Jboss versions 7.x and above.

Security Issues

• CVE-2019-11448: We now prevent unauthenticated access and SQL injection/Remote Code Execution to Popup_SLA.jsp.
• We also prevent SQL injection/Remote Code Execution to the SyncMonitorInAdminMG servlet.
• CVE-2019-11469: We've handled unauthenticated access and SQL injection vulnerability in the "resourceid" parameter that runs on /jsp/FaultTemplateOptions.jsp.

Issues fixed in 14140

• In Server Monitoring SNMP v3, the process list is displayed as down and doesn't become up unless polled manually.
• Users could not disable user action for MsSQL JOBs. To fix this issue, we have provided an option under User Management -> Persmissions Tab to "Allow Admin users to do MSSQL Job management actions".

Issues fixed in 14130

• Android push notification is done via Firebase Cloud Messaging instead of Google Cloud Messaging.
• In Server Monitoring, CPU core data was not being collected in SNMP mode.
• When generating Dashboard Scheduled reports, widgets are now printed in the proper order (as shown in the Applications Manager client) and page break is added after each widget.
• Alerts were not being removed from the Admin Server if the Trap Listener is deleted from Managed Server.
• When a new user was created with a profile photo, logging in to the new account would redirect to an error page (since build 14080).
• The GetDowntimeDetails Rest API was returning data for only 28 days irrespective of the month for the period=11(Last month) (since build 14080).
• When editing threshold configuration in the Admin Server, data was not being synched with the Managed server (since build 14100).
• Restricted the unauthorized access for Edit Monitor, Update Monitor and View Monitor.
• Capacity planning reports sent as scheduled reports could not be opened properly as the file extension was missing at report creation (since build 13840).

Issues fixed in 14120

• Negative values were being displayed for the attributes Used Bytes / Free Bytes when usage exceeded 100% in Oracle Temp tablespaces.
• Metaspace memory details (for Java 8) added for Jboss Version 7 and above.

Issues fixed in 14110

• In JBoss server monitoring, JMS details were not being displayed for ActiveMQ.

Issues fixed in 14100

• The Buffer Hit Ratio Attribute report of Oracle Database Monitor in Schedule reports showed "No Data Available".
• In Execute Program Action, the Remote Server Telnet/SSH Port was hardcoded. When a user edited the action, the default port was being displayed instead of the newly configured port.
• When using the GetDowntimeDetails Rest API with the seclected period as "last month", downtime details were being collected for 30 days instead of the number of days in the respective month.
• Users could not configure Monitor Group type alarm templates for tabular attributes when multiple Monitor Group templates existed for the same attribute.
• In Trap Receiver, if a SNMP V3 trap was received, any action configured for other trap listeners were also being executed.
• Service Monitor triggered numerous Monitor Down email alerts every day at different time intervals without RCA change.
• In Linux builds, when users selected the Microsoft Skype for Business monitor from the Create New Monitor page, they were not being redirecting to the appropriate page.
• In the Trap Listener, the trap received details were not being updated (if previous and current severity is clear), but corrective actions were being executed.