ES inspection prompt key patch repair abnormal

Problem Description

The customer inspection ES prompts that the critical patch does not support packaging and needs to contact the development team for handling.

Alarm Information

Effective Troubleshooting Steps

Check customer version information for current version details.
Basics
Software Version: 3.7.2.1575
Virus database version: 20231212180742
Vulnerability rule library: 20231123151817
Popup Blocker Rule Library: 20231130000001
Gene Signature-Based Engine Rule Library: 20231130000001
stubborn virus Rule Library: 20231130000001
Local Virus Database (MAC): 20231212174617
Memory Detection Engine Rule Library: 20231207143309
Heuristic engine library: 20231130000001
Development Environment Identification Library: 20231130000001
Local virus database: 20231212174617
Ransomware Rule Library: 20231130000001
Rogue software anti-rules library: 20231130000001
SAVE rule base: 20231204095318
Popular Threat Intelligence Database: 20231212163001
webshell rule library: 20231204095318
SAVE Model Library: 20231130000001
IOA rule library: 20231212193058
IOC rule library: 1.75787
Commit record: 32c8ade0
Custom package or patch has been installed.
Function Update SP_ES_GN_71_372 2023-09-25 11:41:51
Function update SP_ES_GN_66_372 2023-06-07 12:33:51

Root Cause

The version of the ES inspection tool has been confirmed with the development team to not be synchronized with the corresponding rule library. It is a false positive and does not require attention.

Solution

Inspection platform false positive, no need to pay attention.

Original Link

https://support.sangfor.com.cn/cases/list?product_id=16&type=1&category_id=26167&isOpen=true