Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Client Proxy 4.8.2 Release Notes

About this Patch Release 

This patch release addresses explicit proxy and backports for bypass and security-related issues. 

Release build

  • Windows - 4.8.2.13.1

Note: This patch does not support the automatic upgrade of a pre-release software version. To upgrade to a production release of the software, you must first uninstall any pre-release versions.

Enhancement

Explicit Proxy Mode

Skyhigh Client Proxy v4.8.2 supports Explicit Proxy Mode. For more details, see Explicit Proxy Mode.

NOTE: The Explicit Proxy enhancement is Feature Flag controlled. Contact support to enable this feature. 

Resolved Issue

Reference Issue Description
MCP-5866 The bypass list is working as expected. (Windows only) 

Vulnerability Fixed

This Skyhigh Client Proxy release includes updates addressing publicly disclosed CVEs, regardless of whether a CVE has been shown to impact customers.

The following medium CVEs (CVSS 3.1 >= 5.5) were involved:

Reference Description

MCP-6107

This Skyhigh Client Proxy release addresses the below-mentioned medium severity vulnerabilities related to the Client Proxy bypass and uninstall process. (Windows only)

  • CVE-2024-0311
  • CVE-2024-0312 
  • CVE-2024-0313 

For more details on the vulnerabilities addressed as part of Skyhigh Client Proxy 4.8.2, see Service Bulletin SB10418.

 

  • Was this article helpful?