Release Notes

Issues fixed in 173300 - October 28, 2024

• In the EUM monitor, data collection failed to resume after the database connection was restored if it was lost during the polling process.
• A performance issue occurred while simultaneously polling multiple Web Page Analyzer (WPA) monitors.
• In the Dameng DB monitor, there was an issue where the 'Used Size' column was not displayed for versions below 8.
• In the enterprise edition, the expired downtime schedulers were not getting cleaned up properly in the managed server.
• In the KVM Virtual machine monitor, the disk information was not displayed properly due to an issue with data collection.
• In the REST API monitor, there was an issue where HTML entities were not displayed properly in the API response.
• In the Performance widgets, the alert status was not displayed in the inline percentage bar for server monitors.
• In the MSSQL Server Monitor, there was an issue with data collection when it was configured in a multi-subnet failover cluster.
• In the Database Query Monitor, the output table columns were displayed in alphabetical order instead of the order specified in the query.
• In the Kingbase monitor, no data was displayed under the Session tab.

Issues fixed in 173200 - October 21, 2024

• In Amazon Gateway Load Balancer (GLB) monitor, there was an issue in populating the graph for the Rate of Data Processed metric.
• In the VCenter server, VMware Clusters, resource pools were not removed properly from Applications Manager, even after the corresponding cluster or resource pools were removed from the server.
• In MSSQL monitor:
  • Data for Mirroring details was not being collected.
  • There was a problem with data collection when the job name contained single quotes and was marked as 'Unmanaged'.
• There was an issue in collecting MySQL Group replication details in the MySQL monitor.
• In the Attributes Alarm widget, only the attribute name was displayed, even when it belonged to a child resource type.

Issues fixed in 173100 - October 14, 2024

• In URL-based monitors, there was an issue where the default 'Accept' header was being duplicated in requests, causing API/URL calls to fail for some customers.
• There was an issue with data collection in the Oracle NoSQL monitor when using Oracle version 22.
• Users experienced slowness when loading the Machine Learning threshold features.
• There was an issue with the severity-based sorting in the Alarms tab.
• The Availability % in the Availability History widget was not displaying values with a precision of two decimal places.
• In the Performance widgets, the alert status was not displayed in the inline percentage bar for Windows monitors.
• In the Configure Alarms page, selecting the default values for "Select Monitor type" and "Select a Monitor" options resulted in an unexpected error when trying to switch to a different view.
• In the Admin Server, the Configure Alarms page displayed the same custom event log rule multiple times for monitors, with the number of occurrences matching the number of Managed servers present.
• There was an issue where event log rules with a ':' in their display name were not synchronized to the Managed server.
• In the Admin Server, actions configured for the event log rule were not synced to the Managed server.

Issues fixed in 173000 - October 4, 2024

• There was slowness in generating availability reports when the monitor group contained more than 1,000 monitors or when subgroups within the monitor group had a large number of monitors.

Issues fixed in 172900 - September 30, 2024

• In the Kubernetes monitor, the error message displayed when a resource was down during data collection was unclear and did not indicate the actual issue.
• For actions configured on the IBM WebSphere MQ monitor, whenever the $hostname tag was used in the action configuration, an incorrect hostname was displayed.

Issues fixed in 172800 - September 23, 2024

• In the File Monitor, a clear alert wasn't triggered for the content match attribute when the alert was caused by the detection of new content.
• There were connection failures in the MS SQL monitor due to an incompatibility between the upgraded database connection tool and the jTDS driver.
• In the Linux server monitor, the Disk Total Size (MB) attribute value did not match the total size reported by the SSH/Telnet mode data collection command.

Issues fixed in 172700 - September 16, 2024

• In server monitors, threshold and actions applied to Server Uptime attribute via alarm template were not applied properly.
• There was a problem in adding a new Linux monitor via Telnet mode when non default port values were specified.
• Disassociating an email action from the Admin server was not reflected in the Managed servers. (Broken since v16050)

Issues fixed in 172600 - September 10, 2024

• Whenever there was a problem in collecting Uptime Attribute data, multiple alerts were generated when the 'Collect performance data once in n polls' was enabled.
• In the Windows server monitor, a generic message was displayed when the Script execution time exceeded the configured timeout value instead of specifying the attribute details.
• Users were unable to delete the downtime scheduler using the DeleteMaintenanceTask API.
• In server monitors, threshold and actions applied to Server Uptime attribute via alarm template were not applied properly.
• Disassociating an email action from the Admin server was not reflected in the Managed servers.
• When syncing health alerts from OpManager to the APM Plugin, monitor name was not included along with the RCA message.

Issues fixed in 172500 - September 2, 2024

• Users with Windows machines had an issue with automatically restarting Applications Manager after the reboot process. (Broken since v170700)
• In the View Threshold profile page, UsedBy count sorting was not working properly when the threshold name contained '>' character.
• 'Expand All' option in Monitor group view was not working properly, when large number of monitor groups and sub-groups were present.
• For a ticket action created in Admin server, the action was shown as disabled even when it was enabled.(Broken since v16830)
• In Linux server monitor, data was not collected properly due to the appearance of yes/no prompts.
• There was a problem listing the services in the Linux server monitor.
• There was a problem while trying to create SMS modem actions when more than 50 mobile numbers were present.

Issues fixed in 172400 - August 26, 2024

• Users were not able to delete the Prometheus integration in Settings → Integrations → Prometheus. (Broken since v172200)
• In the Windows monitor, there was an issue displaying the associated actions for the Health attribute via the configured alarm template.
• Alerts for SQL AlwaysOn Availability Group replicas were not cleared after a failover.
• In server Monitor, a generic message was mistakenly shown when the password expired.
• There was an issue in generating a PDF of the Attribute Polled Data Report.
• There was an issue in adding the SAP monitor. (Broken since v171200)

Issues fixed in 172300 - August 19, 2024

• The SLA module had UI issues, including misalignments in the availability pie chart and overlapping business application names in the bar graph.
• In Monitor Groups, there was an issue when attempting to create a new SubGroup with a previously used name, even though the existing SubGroup had already been renamed.

Issues fixed in 172200 - July 29, 2024

• There was a problem in collecting process data for VMware ESX/ESXi monitors with Guest OS configuration. (Broken since v170700)

Issues fixed in 172100 - July 19, 2024

• Domain users were unable to log in to the Applications Manager mobile app when Two Factor Authentication (TFA) was enabled.
• There was an issue in saving the Custom field data properly if the Custom field value contained '&' character. (Broken since v16700)
• In Server monitors, the process list data was not displayed correctly when trying to add a process for monitoring.
• Real User Monitor, the User session tab became unresponsive if the monitor contained large number of user sessions.

Issues fixed in 172000 - July 12, 2024

• In the SAP monitor, there was an issue with monitor addition when the password contained special characters. (Broken since 15300)
• There was an issue in displaying Availability Database details of Availability Replicas under AlwaysOn Availability Groups for MS SQL monitor.
• In the MySQL monitor, when the slave node was changed to master, the alerts for the slave node were not being removed.
• In the Oracle and Oracle PDB monitors, the Oracle DB link details were not displayed.
• Applications Manager's Tomcat server was rediscovered upon restart, despite being deleted.

Issues fixed in 16846 - September 12, 2024

• Domain users were unable to log in to the Applications Manager mobile app when Two Factor Authentication (TFA) was enabled. (Broken since v16640)

Issues fixed in 16845 - June 24, 2024

• There was an issue displaying Chinese characters in PDF reports when the necessary fonts were not installed on the machine from which they were viewed.
• In Dameng DB monitor, there was a problem in adding a new monitor due to an error in configuring the Timeout value.
• In Enterprise edition, APM Plugin's license was not updated correctly after expiry.
• In Applications Manager versions 16620 and above, users weren't able to delete monitors.

Issues fixed in 16844 - May 27, 2024

• In the MySQL monitor, the Monitor Availability status remained unaffected even when the MySQL service was down.
• There was a problem in saving proxy settings when the field 'Do not use proxy for addresses beginning with' contained special characters, under Settings → Proxy Server Settings.
• Garbled characters were shown in legends of monitor's graph charts for Chinese installations.
• In Email actions, replaceable tags for List and Text type custom fields were not working properly. (Broken Since v16700)
• In Site24x7 monitors, the monitor details page was not loading properly. (Broken since v16550)
• There was a delay in displaying data in the Attributes Alarm widget when the 'All Monitors' option was selected.

Security issues:

• Fixed a Stored XSS vulnerability in the Event Log name under the Event Log rules. (Reported by prasunaebbili00)
• Fixed a SQL Injection vulnerability in the 'create monitor' function's RESTAPI URL by implementing proper input validation. (Reported by Hòa Vũ Tiến)
• Fixed a Stored XSS vulnerability in the PII search field via description field of montiors. (Reported by prasunaebbili00)

Issues fixed in 16843

• In the Attributes Alarm widget, there was a delay in displaying data when the 'All Monitors' option was selected.
• In the Infrastructure Snapshot Widget, both the 'Monitors in Error count' and 'Health and Availability' information were displayed incorrectly when network devices were added. (Broken since v16842)
• In 'Alarms' tab, the search functionality was not working properly while trying to search with other language characters.
• Garbled characters appeared in the RCA message when the threshold name contained characters from another language and was viewed in a non-HTML format such as SMS or plain text email.

Issues fixed in 16842

• In Maverick v1.7.50, the idle timeout value for authenticating the server using SSH mode was exceeding the default value of 60 seconds.
• In IBM MQ monitors, new monitors were successfully added even though the details provided were invalid. (Broken since v16690)
• Users with Applications Manager build less than v15000 experienced a product startup issue, while upgrading to the latest build.
• There was a problem in performing the manual Execute program action when multiple hosts with SSH keys were associated for the action. (Broken since v16730)
• There was a problem while adding a new Script monitor when the host added as Server monitor with SSH key was selected. (Broken since v16730)
• In SAP server monitor,
  • there was an issue in displaying data in 'RFC' tab due to issues in date conversion.
  • there was an issue in performing bulk deletion due to return of huge amount of data.
  • data table error popup was shown upon selecting the 'Background Jobs' tab from Enterprise Edition Admin server.
• In Oracle RAC monitor, bug reporting page was incorrectly shown on clicking the 'Shared Disk Groups' tab for users with MS SQL database backend.
• In Enterprise Edition, there was a problem while trying to sync an updated Business hour configuration from Admin server to Managed server.
• In Japanese builds, 'Create Business Service' page of Business View contained garbled characters.
• There was a delay in loading Tabular data, Performance Metric and Infrastructure Snapshot widgets.
• In Attributes Alarm widget, there was an issue while listing server details in tooltip for Heat Map and Status columns.
• In Enterprise Edition Admin server, there was a slowness in loading the Attributes Alarms widget for users with MS SQL database backend.
• In Attributes widget, there was no option available to view the Availability Alerts alone when 'All Monitor types' option was selected.
• In WMI mode of Windows monitoring, there was a problem with storing the values of 'Disk IO' attribute, for users with MS SQL database backend. (Broken since v16680)
• In APM Plugin, there was a problem in syncing monitor alerts for MS SQL DB monitors to OpManager when no monitor was present for MS SQL host.

Issues fixed in 16841

• In APM Failover Setup, the secondary server was not getting started automatically, even when the primary server was down.
• In APM Insight Java monitors, JVM metrics were not populated in certain scenarios, when the time period selected was more than a day.
• There was a problem in collecting data for performance metrics in Oracle Cloud monitor. (Broken since v16780)
• In Windows and AIX monitors, there was a problem while trying to enable the Network Adapter from 'Network' tab.
• In Monitor Group Details page, selecting the associated MS SQL database monitor incorrectly redirected the page to 'Home' tab.
• In Azure Service Bus monitoring, data was not collected properly in certain Azure regions due to a recent change in the naming convention of 'resourceGroups' parameter in Azure API response.

Issues fixed in 16840

• In MS SQL monitor, AlwaysOn Availability Group was not deleted properly from Applications Manager although it was removed from SQL server.
• In MS SQL Jobs, there was an issue in clearing the alert for the 'Last Run Status' attribute despite its successful execution.
• In MS SQL monitor, no data was available under 'Jobs' and 'Overview' tabs when Azure SQL/Amazon EC2/Amazon RDS server was added as a MS SQL monitor.
• There was a problem while trying to poll monitor via REST API when the monitor was in an unmanaged, Suppressed Alarm state.
• There was a slowness in performing Global search operation when a large number of monitors were involved.

Issues fixed in 16830

• There was a problem in executing the SMS action configured via SMS gateway for Clickatell provider. (Broken since v16580)
• In Enterprise Edition Admin Server, the 'Edit monitor' option was unavailable for the default PostgreSQL monitor.

Issues fixed in 16820

• In APM Plugin, all the APM Insight monitors were incorrectly listed as unsupported monitors due to discrepancies in Applications Manager's License Handler. (Broken Since v16080)
• Upon integrating ServiceDesk Plus with proxy server configuration, there was an issue while trying to prevent the SDP host from using proxy, as the "No proxy for" option was not working properly.
• In URL and URL Sequence monitors, the monitor status was not reported as "Down" for the socket timeout (613) and multiple redirection (614) errors.

Issues fixed in 16810

• There was an issue in creating a new string threshold profile with threshold value more than 1000 characters for the Critical/Warning/Clear severity from Configure Alarms page.
• In Windows monitor, clicking on the "Unmanage" option for the services resulted in receiving an exception.(Broken since v16440)
• In Alarms, there was an issue while adding or editing annotations, when the message contained 235 characters and a new line.
• Login failure errors were reported in SQL monitors, for few initial polls after every AppManager startup.
• In Schedule Reports configuration page, few attributes were not displayed in the Select Attributes dropdown for the Forecast report type.
• In Windows monitor, there was an issue while trying to access the monitors discovered via ADDM.
• In Oracle RAC monitor, duplicate alerts were raised for Tablespace and Schedule Jobs attributes in certain scenarios.
• There was an issue in performing automatic discovery of a VMware ESX monitor already existing in a manually created monitor group, while adding a VCenter monitor under the Cluster/Datacenter.
• In MSSQL Jobs, "Last Run Status" attribute was incorrectly updated with older dates, which in turn triggered false alerts.

Issues fixed in 16800

• There was an issue while configuring SMTP for a TLS-enabled Mail Server with no authentication.
• In Japanese builds, the service names listed in the Windows Services in SNMP mode had garbled characters.
• In Openstack monitor, data was not collected properly due to the absence of Admin URL for few cx.
• In Services table of OpenStack monitor, multiple URLs were displayed in endpoint column instead of displaying the primary URL alone.
• APM Insight Cleanup Schedulers were not working after 24 hours from build restart, due to which the cleanup process was not performed properly in APM Insight modules.
• In Web Server monitor, the Monitor status was not updated despite the monitor being "down", due to which an error message was displayed by Self monitoring, mentioning that data collection had stopped.
• In Linux server monitor, there was an issue in data collection when any one of the command executions failed with a timeout exception. (Broken since v16430)
• In Microsoft 365 Endpoint monitoring, there was an issue while performing URL based check for a few endpoints, due to which the endpoint status was wrongly shown as 'Down'. (Broken since v16460)
• In Bulk Configuration view, sorting the monitors based on 'Discovered Time' was not working properly in the 'List View' tab.
• In APM Insight, data was not collected properly in 'Traces' tab.(Broken since v16610)
• In KVM monitor, the data collection was delayed whenever the host contained a large number of CPU cores.
• In KVM monitor, there was a problem in collecting data when the output obtained from running SSH commands contained Control-M character in between.
• In User Experience tab, there was a problem in retaining the order in which the EUM monitors were listed, if the user switched between tabs.
• In SSH based monitors, there was a delay in data collection process when large amount of data was shared as response for the commands.
• In Oracle DB monitor, an error message was still shown for the archived log even after the error was cleared, under the 'RPO' tab.
• There was an issue with uploading license/bulk import CSV files in Applications Manager for Linux installations, due to permission issues.
• In Professional Edition, there was a problem in creating an Email action through REST API.
• In APM Insight, there was an issue while aggregating JVM related data, when the number of instances to be archived was too high. (Broken since v15910)
• In Database Query monitor, there was a problem while choosing the primary key, if the selected column name contained number in the beginning.
• In Topology Map View Widget, map view was not displayed properly when the map view name contained special characters.
• The 'Assign Custom Fields' action was not working properly for monitors in Bulk Configuration View.
• In Log a Ticket action, there was an issue in sending values for "Impact" and "Urgency" fields when they were configured as custom fields.
• In RBM, the cleanup process of old screenshot files from the Applications Manager directory was not working properly.

Plugin issues:

• In OpManager integration, there were issues in viewing the network device details imported from OpManager via OpManager connector.
• In OPM Connector Integration, the live data of the imported network device was not properly displayed, when the network device was accessed from the monitor's Bulk config view.

Enterprise Edition issues:

• In Enterprise Edition Admin server, there was a mismatch in the severities of Monitor Groups from Managed server when network devices were associated to those monitor groups via OpManager integration.
• There was a problem in syncing the 'Append Alarm Message' option from Admin server to Managed server.
• In Enterprise edition, data collection was performed unnecessarily for monitors like Windows, Linux, MSSQL etc.. in MSSQL backend, when direct sync was enabled.
• In the Admin server, the 'Poll Now' option was not working properly in the Monitor details page for Managed server's Server monitors. (Broken since v16470)
• In Enterprise Edition, there was a problem while syncing data from Managed to the Admin server, when the request parameter contained an undefined value of -1.
• In Admin Server, intermittent synchronization failures were observed in the MS SQL database backend setup.
• There was an issue in syncing the uploaded patch file to the Managed servers from Admin Server Settings.

Server monitor issues:

• In Server monitors, while adding a non server monitor and the dependent server monitor, server snapshots of the dependent server were not properly attached with the associated Email action of the non server monitor.
• In Server monitors, the process\service template was not properly associated for the new monitors added from Managed server, when direct MS SQL sync was enabled in the Admin server.
• In Chinese installations, there was an issue in displaying the Credential Manager dropdown in the Add Monitor page of Server monitors.

Reports issues:

• In 'Reports' tab, there was a problem in generating Capacity planning report, when Settings for server diagnosis were changed.
• In Attribute reports, there was an issue while generating graphs in PDF format for Show Polled data, when "Business Hour" was applied.(Broken since : v16620)

Widgets issues:

• There was a problem in retaining the original widget layout in published Dashboards.
• Monitor count was incorrectly shown for various severity statuses in the Monitor Status Overview widget.

Security Issues

• XSS was executed when a business hour-based threshold profile was created with the Stored XSS. (Reported by J Su)
• Delegated admin users were able to enable/disable Schedule reports created by Admin users. (Reported by prasunaebbili00)
• Delegated admin users were able to execute and change the status of the Alarm escalation created by Super Admin users. (Reported by prasunaebbili00)
• Delegated admin users were able to execute actions created by Super Admin users, due to insufficient access restrictions. (Reported by prasunaebbili00)

Issues fixed in 16705

• The cleanup process for polled data of monitors was not working properly, causing the backend DB size to increase.
• In APM Insight Java monitors, JVM metrics were not populated in certain scenarios, when the time period selected was more than a day.(Broken since v15910)
• In Monitor Group Details page, selecting the associated MS SQL database monitor incorrectly redirected the page to 'Home' tab.
• In Azure Service Bus monitoring, data was not collected properly in certain Azure regions due to a recent change in the naming convention of 'resourceGroups' parameter in Azure API response.
• In APM Failover Setup, the secondary server was not getting started automatically, even when the primary server was down.
• In Linux server monitor, there was an issue in data collection when any one of the command executions failed with a timeout exception. (Broken since v16430)

Issues fixed in 16704

• In APMInsight, there was a lag in generating the Trend Graphs, which resulted in the delayed loading of the Home page.
• Users with Applications Manager build less than v15000 experienced a product startup issue, while upgrading to the latest build.
• In Oracle RAC monitor, duplicate alerts were raised for Tablespace and Schedule Jobs attributes in certain scenarios.
• Users with 'Operator' role were unable to execute actions manually although sufficient permissions were provided.

Issues fixed in 16703

• In the Real Browser Monitor (RBM) of APM, the screenshot file cleanup process was not performed properly.
• There was an issue in syncing the uploaded patch file to the Managed servers, from Admin Server Settings.
• In Admin Server, intermittent synchronization failures were observed in the MS SQL database backend setup.
• In Enterprise Edition, there was a problem while syncing data from Managed to the Admin server, when the request parameter contained an undefined value of -1.
• In APM Insight, there was an issue while aggregating JVM related data, when the number of instances to be archived was too high. (Broken since v15910)

Issues fixed in 16702

• In AWS EC2 Instance, there was a problem while updating the password as EC2 Instance ID when only MetaData V2 was enabled.
• In Enterprise Edition Admin server, SSH credentials added using private key were not synced properly to Managed server. (Broken since v16620)
• There was an issue while configuring SMTP for a TLS-enabled Mail Server with no authentication.
• In URL and URL Sequence monitors, the monitor status was not reported as "Down" for the socket timeout (613) and multiple redirection (614) errors.
• There was an issue with uploading license/bulk import CSV files whenever OpManager was installed on the same machine as Applications Manager for Linux installations due to permission issues.
• In KVM monitor, there was slowness in data collection when the host server contained a large number of CPU cores.
• Dashboard report generation via Schedule reports was not performed properly in the Enterprise Edition Single Sign On (SSO) setup.
• In APM Plugin, MS SQL discovery was performed during every startup.

Security Issues

• XSS was executed when a business hour based threshold profile was created with the Stored XSS.(Reported by J Su)

Issues fixed in 16701

• In APM Insight, data was not collected properly in 'Traces' tab. (Broken since v16700)
• In Japanese builds, the service names listed in the Windows Services in SNMP mode had garbled characters.
• APM Insight Cleanup Schedulers were not working after 24 hours from build restart, due to which the cleanup process was not performed properly in APM Insight modules.
• In Microsoft 365 Endpoint monitoring, there was an issue while performing URL based check for a few endpoints, due to which the endpoint status was wrongly shown as "Down". (Broken since v16460)
• In Enterprise Edition Admin server, there was a mismatch in the severities of Monitor Groups from Managed server when network devices were associated to those monitor groups via OpManager integration.

Issues fixed in 16700

• In XenServer VM monitor, CPU Utilization (%) value was always displayed as zero irrespective of the calculated value.
• In Amazon monitor, there was an issue while adding the monitor for regions like Asia Pacific (Hyderabad), Europe (Zurich), Europe (Spain), and Middle East (UAE). (Broken since v16340)
• There was an issue with adding attributes in SNMP Device monitor when Applications Manager was installed/switched to Japanese/Korean language.
• Data collection was stopped for EUM-based monitors when the EUM agent was restarted.
• There was an issue in mapping multiple EUM agents to an Applications Manager instance for registered users. (Broken since v16450)
• In Java Runtime monitor, data was not collected properly for most of the attributes due to the absence of few JMX attributes in JConsole.
• In JBoss EAP server monitor, data was not collected properly due to changes in Domain Controller name, resulting in Monitor Down alert.
• In MS SQL monitor, data was not collected properly for metrics under 'Overview' tab.
• Monitors under Downtime Schedules/Unmanaged widget were not updated properly with the latest information based on the configured downtime schedules. (Broken since v15090)
• In Enterprise Edition Admin server, assigning multiple monitor groups to a monitor resulted in synchronization issues and inheritance ambiguity in custom fields.

Security Issues

• CVE-2023-5072: Upgraded JSON package to v20231013 to mitigate Denial of Service vulnerability.

Issues fixed in 16690

• In the Citrix XenApp monitor, data was not properly collected due to invalid namespace errors.
• In WebLogic Application Server monitors, the data collection agent was not deployed properly even though monitor addition was successful.
• Users with Operator roles were unable to view the associated subgroups in the Monitor Groups → Tree View widget.
• In Azure AKS and Amazon EKS monitors, data was not properly collected due to a deprecated command in the latest version of kubectl.
• Few users with Applications Manager Postgres build (v16590) experienced a product startup issue since the port used for connecting to PGSQL was incorrect.
• For users with Operator roles, there was a restricted access error thrown while trying to generate Attribute History reports for tabular metrics. (Broken since v16540)
• In Linux monitors, there was an issue while parsing and storing the network interface output, due to the presence of altname in the customer environment.

Issues fixed in 16680

• In Japanese builds, the service names listed in the Windows Services in SNMP mode had garbled characters.
• In the Mail Server monitor, there was an issue while adding new monitor with IMAP server Configuration.
• Users with Windows machines had an issue while restarting APM using the Shutdown/Restart option under Settings, even though the shutdown process was successful.
• The Anomaly Dashboard could not be accessed from the Alarm Details page. (Broken since v16630)
• In Settings → Performance polling, there was an issue sorting the Monitor types listed in the dropdown.
• In the Admin server, there was a delay in loading the APMInsight Home page.
• There was an issue while loading graphs for APMInsight Application view, whenever the instance count exceeded 75.
• The Microsoft 365 monitor had an issue sorting the Endpoints Connectivity table based on the Response Time attribute.
• In Amazon RDS monitor, the value for 'Free Storage Space' attribute was miscalculated in 'Overview' tab.
• There was a problem while attempting to close the in-product ad announcements from the header in UI.
• In Monitor Group Template Dashboards, selecting the Critical alarm in the Availability, Health and Alarm Summary widget incorrectly redirected to the Overall Alarms section.
• There was an issue with displaying the Associated Monitor Groups for HP UX, FREEBSD / OpenBSD, Sun Solaris, Docker, container, and Virtual Machine Monitor Types in Inventory report.
• In the 'Select Attribute' dropdown of 'Reports' tab and Anomaly dashboard, there was a problem in properly displaying the resource type in parentheses for third-level attributes.
• In 'Home' tab, duplicate tabs were wrongly created on clicking the tab names under 'More' dashboard link.
• In RabbitMQ monitor, historical data of all the pre-existent Channels and Connections were cleared and re-added by mistake for all the existing monitors.
• There was an issue while creating a Threshold profile outside the business hour and associating it to an attribute with no previous severity.
• In "Alarm Summary widget", there was a problem while configuring the 'Time period' for the widget as 'Today' or 'Yesterday'.

Issues fixed in 16650

• In Enterprise Edition Admin server, the Push Auth Key operation was not working properly when the Managed server was set up with failover configuration.

Security Issues

• Delegated Administrator was able to Add, Edit, and Delete SAML Authenticator for ADFS due to insufficient access restrictions. (Reported by Akshay Ravi)

Issues fixed in 16640

• In SNMP Device monitoring, there was a problem while adding an OID for a table leaf value.
• In parent child monitor setups like Docker, Virtual Machines, EC2Instances, AzureVMs etc.., multiple duplicated alarms were triggered due to an error, when the monitor status was "Down".

APM Insight issues:

• There was a delay in rendering data in the subgrid of APM Insight Home page.(Broken since v16240)
• In APMInsight Instance, the Display name was mistakenly modified to its old value, while restarting the agent.(Broken since v15820)
• In APM Insight, there was a problem while performing the License Check, where a "License exceeded" status was erroneously reported.

Security Issues

• CSRF protection was missing for operation to terminate the backup in Backup Schedule Page (Settings → Backup Schedule).(Reported by Akshay Ravi)
• Delegated Administrator role users were able to update Performance Polling settings. This has been fixed now.(Reported by Akshay Ravi)

Issues fixed in 16631

• In APM Insight, there was a problem while performing the License Check, where a "License exceeded" status was erroneously reported. (Broken since v15690)
• There was a delay in rendering data in the subgrid of APM Insight Home page.(Broken since v16240)
• In Enterprise Edition Admin server, the Push Auth Key operation was not working properly when the Managed server was set up with failover configuration.

Issues fixed in 16630

• In MSSQL monitor, there was a problem while collecting data for AlwaysOn Availability Database metrics due to Query Timeout error.
• There was a problem while adding REST API Sequence Monitor through HAR import option when the Step name contained special characters.(Broken since 16540)
• In Alarm History page, there was mismatch in the time shown for various attributes, including Health History and Availability History, when Applications Manager was installed in one time zone and accessed from another.
• In Linux monitor, there was an issue with adding Cron Jobs via SSH mode.
• In ServiceDesk Plus On-premise (SDP OP) integration, there was a problem while raising a ticket with custom fields in 'Log a ticket' action. (Broken since v16320)
• In File Monitor, content check was performed to the entire file although the option 'Only appended content' was enabled.
• Upon enabling Self monitoring in MSSQL backend, the SQL DB File calculation was performed erroneously even when users were not provided with the "VIEW SERVER STATE" permission.
• Delegated Admin role users were redirected to an error page while creating a Business Service from New Monitor Group → Design Business Service.
• In WMI mode of Windows monitoring, there was a problem while fetching the process data via VB-script for the Process monitor in foreign language OS.

Security Issues

• Possessing the Username and Email ID of a user, an infinite number of password reset emails were sent to that email address.

Issues fixed in 16620

• In Linux server monitor, there was a problem in collecting data due to a command used to fetch OS release.
• In SNMP-based Server monitors, the Monitored processes were wrongly displayed as Down. (Broken since v16390)
• In MySQL, MSSQL and DB2 monitors, debug files were unnecessarily created for few attributes during every polling, although no alert was triggered.

APM Insight issues:

• In Monitor Information tab, there was a problem while changing the time period of an Application/Instance, leading to an API failure.
• In the Home page of APM Insight, there was a delay in rendering data. (Broken since v16240)
• In 'Transactions' tab, there was a problem while reloading the data upon changing the time period in 'Table View'. (Broken since v16440)
• There was an issue while performing the cleanup process in APM Insight modules, due to an error in the Cleanup Scheduler.

Enterprise Edition issues:

• In Credential Manager, there was a problem while syncing credentials from Admin to Managed server, if the password or username contained double quotes.
• There was a problem in syncing the updated float-based threshold profiles from Admin to Managed server.
• In Configure Alarms, there was an issue in properly syncing the threshold configuration for string attributes from Admin to Managed server. (Broken since v16590)

Issues fixed in 16610

• In Windows monitor type there was a problem in displaying Monitor group details in the Inventory report.
• While enabling "Two Factor Authentication" via Email mode, the "Resend OTP" button was not displayed properly in the Login page.
• There was a problem while trying to access the 'Monitor details' page for Windows monitors (WMI) added via 'Bulk Import' option.
• In 'Reports' tab, there was a problem in displaying Availability and Health History report in CSV format.
• In 'Reports' tab, there was a slowness in generating the Capacity Planning report.
• There was an issue in displaying the View settings option in Business View.
• In MongoDB monitor, there was a problem in displaying the values for some replication metrics in 'Replica Stats' tab. (Broken since v16500)
• In APMInsight's Exceptions tab, there was an issue while displaying exception count, in the 'Recent 5 error transactions' table.

Security Issues

• XSS was executed when a business hour based threshold profile was created with the Stored XSS.(Reported by J Su)
• Delegated Admin was able to edit Mail server, SMS gateway and SMS server configuration using privilege escalation.(Reported by c09yc47)

Issues fixed in 16600

• There was an issue while creating Threshold profile via Configure Alarms Template.
• There was a problem in displaying various Performance metrics like ReportCollectedDate(from Exchange Online, SharepointOnline), CollectedDate(from Microsoft Teams) and StreamsViewType(from DynamoDB) when Custom Poll interval was enabled for these attributes under Performance polling.
• In Linux server, Server Time attribute was not displayed properly when the monitored server is in CST Timezone.
• In LDAP server monitor, there was a problem while adding multiple monitors with same host and port, but different search base.
• In "Monitor Group" widgets, the 'Filter by custom fields' option was not working.
• In EUM monitors, when the "Modify Availability status of EUM-based monitors when EUM Agent goes down" option under Availability settings was enabled and the EUM agent was down, alerts were incorrectly sent for EUM monitors in Unmanaged state.
• In APM Plugin, there was a problem in displaying URLs while using HAR import option in URL Sequence monitor. (Broken Since 16540)

Issues fixed in 16591

• There was a problem while syncing the deleted Threshold profiles from Admin server to Managed server.(Broken since v16580)
• There was an issue while creating Threshold profile via Configure Alarms Template.(Broken since v16590)
• In the Home page of APM Insight, there was a delay in rendering the UI.(Broken since v16240)
• In SSH/Telnet based monitors, the Timeout value was set to a default of 40 irrespective of the user's inputs.(Broken since v16430)
• There was a problem while updating numeric Threshold profile in UI.(Broken since v16590)
• There was an issue while creating String Threshold profile via Configure Alarms Template from Admin Server.(Broken since v16590)
• In APM Plugin, there was a problem in displaying URLs while using HAR import option in URL Sequence monitor.(Broken Since v16540)

Security Issues

• XSS was executed when a business hour based threshold profile was created with the Stored XSS.(Reported by J Su)
• Delegated Admin was able to edit Mail server, SMS gateway and SMS server configuration using privilege escalation. (Reported by c09yc47)

Issues fixed in 16590

• There was a problem in adding a DB Query monitor whenever a new host was specified by the user. (Broken since 16580)
• There was a problem while generating Inventory report in PDF and Excel formats when the number of monitors exceeded 4000.
• In Email Alerts of Server monitors, the inline images related to CPU details were not loading properly if the user accessed it using Microsoft Outlook email client.
• In Exchange Online monitor, alerts for Top Mailboxes metric were accidentally generated even when the 'Default Polling Status' was set to 'Collect data at customized time interval'.(Broken Since: 16310)
• To enhance security, Admins, Delegated Administrators, Operators, Users, and Managers have been restricted from modifying their usernames.
• In PostgreSQL monitor, there was an issue while collecting data for Top50 Table Row details if the table name contained capital letters.
• In AS400 monitor → Queues tab, there was a problem while adding more than 300 queues.

Issues fixed in 16580

• In Spanish language builds, the Response Time metric in IIS Server was wrongly displayed in minutes instead of milliseconds.
• There was a problem while performing few operations including PollNow, Ping, Manage/Unmanage Monitor UnmanageAndReset Monitor GetMonitorData, Delete Monitor, GetMonitorData, and remove monitor via RESTAPI for managed server monitors/ monitor groups from Admin Server. (Broken since v16570)

Issues fixed in 16574

• In the Admin server, there was a delay in loading the APMInsight Home page.
• There was an issue while loading graphs for APMInsight Application view, whenever the instance count exceeded 75.
• For users with Operator role, there was a restricted access error thrown while trying to generate Attribute History reports for tabular metrics. (Broken since v16540)
• Users with Windows machines had an issue while restarting APM using the Shutdown/Restart option under Settings, even though the shutdown process was successful.
• In Azure AKS and Amazon EKS monitors, data was not properly collected due to a deprecated command in the latest version of kubectl.
• In Amazon RDS monitor, the value for 'Free Storage Space' attribute was miscalculated in 'Overview' tab.
• In Exchange Online monitor, alerts for Top Mailboxes metric were accidentally generated even when the 'Default Polling Status' was set to 'Collect data at customized time interval'.(Broken Since v16310)

Security Issues

• CVE-2023-5072: Upgraded JSON package to v20231013 to mitigate Denial of Service vulnerability.

Issues fixed in 16573

• In Linux server monitor, an alert was intermittently shown during data collection due to network/environment issues.
• In Monitor Group Template Dashboards, selecting the Critical alarm in the Availability, Health and Alarm Summary widget incorrectly redirected to the Overall Alarms section.
• In WMI mode of Windows monitoring, there was a problem while fetching the process data via VB-script for the Process monitor in foreign language OS.
• In SNMP-based Server monitors, the Monitored processes were wrongly displayed as Down. (Broken since v16390)
• In ServiceDesk Plus On-premise (SDP OP) integration, there was a problem while raising a ticket with custom fields in 'Log a ticket' action. (Broken since v16320)
• In MongoDB monitor, there was a problem in displaying the values for some replication metrics in 'Replica Stats' tab.(Broken since v16500)
• There was a problem while adding REST API Sequence Monitor through HAR import option when the Step name contained special characters. (Broken since 16540)
• In MySQL, MSSQL and DB2 monitors, debug files were unnecessarily created for few attributes during every polling, although no alert was triggered.
• In Enterprise Edition Admin server, credentials added via Credential Manager REST API were not synced properly to Managed server. (Broken since v16570)

APM Insight issues:

• In APM Insight, there was a problem while performing the License Check, where a "License exceeded" status was erroneously reported. (Broken since v15690)
• There was a delay in rendering data in the subgrid of APM Insight Home page. (Broken since v16240)
• In 'Transactions' tab, there was a problem while reloading the data upon changing the time period in 'Table View'. (Broken since v16440)
• There was an issue while performing the cleanup process in APM Insight modules, due to an error in the Cleanup Scheduler.

Security Issues

• XSS was executed when a business hour based threshold profile was created with the Stored XSS.(Reported by J Su)
• Delegated Administrator was able to Add, Edit, and Delete SAML Authenticator for ADFS due to insufficient access restrictions. (Reported by Akshay Ravi)
• Delegated Administrator was able to modify Performance polling due to insufficient access restrictions. (Reported by Akshay Ravi)
• CSRF protection was missing for operation to terminate the backup in Backup Schedule Page (Settings → Backup Schedule). (Reported by Akshay Ravi)
• Delegated Admin was able to edit Mail server, SMS gateway and SMS server configuration using privilege escalation.(Reported by c09yc47)
• Possessing the Username and Email ID of a user, an infinite number of password reset emails were sent to that email address.

Issues fixed in 16572

• In Windows monitor type there was a problem in displaying Monitor group details in the Inventory report.
• In "Monitor Group" widgets, the 'Filter by custom fields' option was not working.
• In APM Plugin, there was a problem in displaying URLs while using HAR import option in URL Sequence monitor. (Broken Since 16540)
• In the Home page of APM Insight, there was a delay in rendering the UI. (Broken Since: v16240)
• There was a problem while trying to access Monitor details page, in Windows monitors(WMI) added via Bulk import option.

Issues fixed in 16571

• There was a problem while performing few operations including PollNow, Ping, Manage/Unmanage Monitor UnmanageAndReset Monitor GetMonitorData, Delete Monitor, GetMonitorData, and remove monitor via RESTAPI for managed server monitors/ monitor groups from Admin Server. (Broken since v16570)

Issues fixed in 16570

• In Admin server, there was a problem with the Monitor Errors Status Widget in displaying the error details.
• When re-adding existing server monitors and associating them to a monitor group redirected the user to an error page.
• The 'Action Type' dropdown was listed mistakenly instead of the 'Monitor Type' dropdown in the Configure Alarms page of Admin server. (Broken since v16510)
• In APM Insight, Monitor Availability status was not properly updated.(Broken since v14780)
• There was a startup issue in APM Plugin for users with MSSQL backend. (Broken since v16400)
• In DynamoDB monitor, alerts were not properly cleared when no data was returned for user activity based metrics.
• In AIX servers, there was a problem in listing the running processes while clicking the Add process button.
• Port value for Servers in SNMP mode was set to 161 by default, irrespective of user input. (Broken since v15350)
• Normal admin users were not able to perform user management operations like creating and deleting users.(Broken since v16480)

Security Issues in 16560

• AD users were unable to login to APM plugin setup via OPM. (Broken since v16540)

Issues fixed in 16550

• In Database Query monitor, there was a problem in displaying the query and its corresponding output whenever the query contained the '|' symbol.
• There was a problem while trying to access the Configure Alarms page from APM Plugin in Admin server.
• There was an issue while editing an existing string-type threshold profile on the View Threshold profile page.

Issues fixed in 16540

• The Downtime Summary report was wrongly sent to the email address of Admin user when there was no action associated to it.
• There was a problem in generating Downtime history, At a glance and Summary reports when the All Monitors option was chosen while scheduling reports for Monitors type.
• Incorrect email notifications were being sent which mentioned that the Managed server was up/down whenever Admin server was restarted.
• A null message was displayed in the monitor details page for all unmanaged monitors in versions below 16440.
• There was a problem in displaying data in Bulk Monitor View's Performance tab for Windows monitor for Windows version 2011, 2019 and 2022. (Broken since : v16420)
• Database Name filter under the performance tab was not working properly in MS SQL monitor.
• In Downtime Summary report page, there was a problem while creating Email action in Japanese builds.
• In DB2, MSSQL and MySQL monitors, there was a problem while trying to edit the existing monitors when the display name contained special characters. (Broken Since: v15520)
• There was problem in accessing the Managed server from Admin server via HTTP.
• There was a problem in syncing data from Managed Server to Admin server due to miscalculated ID usage in self monitoring. (Broken Since: v15210)
• There was a problem in adding a Managed server when attempting to push the Auth key whenever the server password contained special characters.
• While creating ticket in ServiceDesk Plus, the requester name was wrongly set as Administrator by default.
• While deleting values from a custom field's list, the values that were assigned to monitor/ monitor group were wrongly replaced by their Field ID.
• In the Bulk config view's List view tab, the sorting functionality was not working for the Health and Availability attributes columns.
• There was an issue in updating the credentials of the default Tomcat monitor using Hostname.

Security Issues

• CVE-2023-38333: Reflected XSS Vulnerability in product jsp endpoint has been fixed. (Reported by Anonymous working with Trend Micro Zero Day Initiative)

Issues fixed in 16530

• SMS Gateway action was not executed properly whenever a new line was included as part of get method's request parameters.
• There was a problem in loading the Monitor details page after performing Enable/Disable or Delete operation of table rows via the Show All option.(Broken Since v15520)
• There was an issue in displaying the associated actions for attributes in the Configure Alarms page when the Generate Alarm option was set to 'On Value Change'.
• In URL & URL Sequence monitor, there was an issue in displaying proper error message when the monitor availability was down.
• There was a problem in accessing the details page of URL Sequence monitors when they were accessed from their associated Monitor groups.
• In IBM MQ monitors → Queue tab → Queue Statistics, there was a problem in monitoring the Last message Put Time and Get Time in minutes.
• Delegated admin users were unable to access the Scheduled reports that were created by them whenever the reports were later edited by Super admin.
• The query used to collect backup and restore data in MS SQL monitor has been optimized to prevent data unavailability error/performance issues.
• Users with Operator/Delegated Administrator roles weren't able to access the option to view custom fields in the Alarm History page. (Broken since v15980)
• APM Insight encountered a problem with displaying certain recent transactions in the Transaction table as there was an issue with the table when the storage limit had exceeded.
• There were issues in collecting data for Openshift and KVM monitor.(Broken Since 16430)
• The 'Set as Clear', 'Pickup / Unpickup Alarm', 'Add / Edit/ Delete Annotation' actions that were performed in the Admin server were not synced to the Managed Server (Broken Since 16500)

Issues fixed in 16520

• In Script monitor, there was a problem in parsing data for scalar attributes when the output included an extra space.
• There was a problem in creating/editing a server SLA when more than 1000 servers were present or selected. (Broken since v15570)
• There was a problem while performing data archival for monitors added in Admin server.(Broken since v16450)
• While disabling Two Factor Authentication in Applications Manager, the appropriate alert box was not displayed properly.
• In Alarms page, the filter option was not working properly when Sun Solaris monitor was chosen as the Monitor Type.
• In Query monitor, while trying to delete an existing query in the Execution Table, the entire table was deleted by mistake.
• There was a problem in associating the SAP monitor with a Monitor group during monitor creation.
• In MS SQL monitor, there was a problem in displaying data for Top Slow Running Queries(DC, Filter Option, PDF report), Cost of Missing index, System Tables and DBCC CHECKDB metrics when case-sensitive collation was configured for the server.
• In Performance polling settings, garbled characters were displayed while selecting various metrics like Jobs history, Session Lock, VLF, DBCC CHECKDB, DBCC Index, and Replication History in Japanese builds.
• In Add/Edit monitor page of Server monitor, the Timeout value was set to a default of 40 irrespective of the user's inputs.
• In configure Alarms page, while configuring alarms by Monitor type, the threshold was not properly associated for secondary attributes.

Issues fixed in 16514

• In SNMP-based server monitors, the monitored processes were wrongly displayed as down. (Broken since v16390)
• In WMI mode of Windows monitoring, there was a problem while fetching the process data via VB-script for the process monitor in foreign language OS.
• In ServiceDesk Plus On-premise (SDP OP) integration, there was a problem while raising a ticket with custom fields in 'Log a ticket' action. (Broken since v16320)
• There was an issue with adding attributes in SNMP Device monitor when Applications Manager was installed/switched to Japanese/Korean language.
• In Japanese builds, the service names listed in the Windows Services in SNMP mode had garbled characters.

Security Issues

• Fix for URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FORM authentication feature of Apache Tomcat. (CVE-2023-41080)
• Delegated Administrator was able to modify Performance polling due to insufficient access restrictions. (Reported by Akshay Ravi)
• CSRF protection was missing for operation to terminate the backup in Backup Schedule Page (Settings → Backup Schedule). (Reported by Akshay Ravi)
• Delegated Administrator was able to Add, Edit, and Delete AML Authenticator for ADFS due to insufficient access restrictions. (Reported by Akshay Ravi)
• Possessing the Username and Email ID of a user, an infinite number of password reset emails were sent to that email address.

Issues fixed in 16513

• In SSH/Telnet based monitors, the Timeout value was set to a default of 40 irrespective of the user's inputs.(Broken since v16511)

Security Issues

• Delegated Admin was able to edit Mail server, SMS gateway and SMS server configuration using privilege escalation.(Reported by c09yc47)
• XSS was executed when a business hour based threshold profile was created with the Stored XSS.(Reported by J Su)

Issues fixed in 16512

• The 'Action Type' dropdown was listed mistakenly instead of the 'Monitor Type' dropdown in the Configure Alarms page of Admin server. (Broken since v16510)
• There was a problem in generating Downtime history, At a glance and Summary reports when the All Monitors option was chosen while scheduling reports for Monitors type. (Broken since v15570)
• Delegated admin users were unable to access the Scheduled reports that were created by them whenever the reports were later edited by Super admin.
• Incorrect email notifications were being sent which mentioned that the Managed server was up/down whenever Admin server was restarted. (Broken since v15430)
• There was a problem in adding a Managed server when attempting to push the Auth key whenever the server password contained special characters.
• There was an issue while editing an existing string-type threshold profile on the View Threshold profile page. (Broken since v16480)
• In DB2, MSSQL and MySQL monitors, there was a problem while trying to edit the existing monitors when the display name contained special characters. (Broken since v15520)
• There was a problem while trying to access the Configure Alarms page from APM Plugin in Admin server.

Security Issues

• CVE-2023-38333: Reflected XSS Vulnerability in product jsp endpoint has been fixed. (Reported by Anonymous working with Trend Micro Zero Day Initiative)

Issues fixed in 16511

• Users were unable to perform Alarm actions when they arrived to the Alarms page from the Heat map and Monitor status overview widgets.
• The Downtime Summary report was wrongly sent to the mail ID configured in Mail server settings whenever there was no action associated to it.
• In Downtime Summary report page, there was a problem while creating Email action in Japanese builds.
• In Sun Solaris monitor, there was a problem in applying Monitor type filter in Alarm view page.
• There was a problem while performing data archival for monitors added in Admin server.(Broken since v16450)
• There was a problem in creating/editing a server SLA when more than 1000 servers were present or selected.(Broken since v15570)
• In Script monitor, there was a problem in parsing data for scalar attributes when the output included an extra space.
• In Query monitor, while trying to delete an existing query in the Execution Table, the entire table was deleted by mistake.
• APM Insight encountered a problem with displaying certain recent transactions in the Transaction table as there was an issue with table when the storage limit had exceeded .
• In Performance polling settings, garbled characters were displayed while selecting various metrics like Jobs history, Session Lock, VLF, DBCC CHECKDB, DBCC Index, and Replication History in Japanese builds.
• There was problem in accessing the details page of URL Sequence monitors when they were accessed from their associated Monitor groups.
• In Add/Edit monitor page of Server monitor, the Timeout value was set to a default of 40 irrespective of the user's inputs.(Broken Since:v15350)
• There was a problem while collecting data for Openshift monitor. (Broken since v16430)
• While disabling Two Factor Authentication in Applications Manager, the appropriate alert box was not displayed properly.(Broken since v16240)
• There was a problem in syncing data from Managed Server to Admin server due to miscalculated ID usage in self monitoring.
• In configure Alarms page, while configuring alarms by Monitor type, the threshold was not properly associated for secondary attributes.

Issues fixed in 16510

• There was an issue in pushing alerts from the Managed server to the Admin server due to misconfiguration of severity of alerts. (Broken since v15720)
• In Linux, Windows and AIX monitors, network interface details were not displayed properly when clicking on the Interface link in the Topology View widget. (Broken since : v15550)
• There was an issue in adding a Windows monitor in SNMP v3 mode when SHA_256 or SHA_512 values were selected for the SNMP Auth Protocol field. (Broken Since: v16320)
• While editing the Heat map and Monitor by Status and Downtime widgets, "Please select at least one Severity" error message was erroneously displayed even when the severity was selected. (Broken since v16360)
• In Monitor Status Overview, Heat Map and Server Uptime widgets, there was a problem in displaying data while creating a Monitor Group Template dashboard with all monitors.
• In Heat Map, Monitor Status Overview, Monitor Error Status and Alarm summary widgets, the count of EUM monitors were displayed incorrectly as it also took the child monitors into account. (Broken since v16360)
• In Heat map widgets, the Sort by option was not working properly in some cases. (Broken since v16360)
• There was a problem in accessing the 'Monitor Details' page of the Windows NT monitor after adding it in the SNMP mode of monitoring.
• There was a problem in saving the Performance polling settings in Japanese builds.
• In WMI mode of Windows monitoring, there was an issue in displaying the CPU/Memory utilization data for the Process monitor.
• For users with Operator/Delegated Administrator roles, data was not displayed properly in the Heat Map and Monitor Status Overview widgets whenever there were more than 2000 monitors present.
• Users were unable to perform Alarm actions when they arrived to the Alarms page from the Heat map and Monitor status overview widgets.
• There was an issue in data collection for an unknown monitor that was configured into a Linux monitor through SSH key based authentication. (Breakage Since: v15550)
• In Alarms tab, there was a problem in choosing the Select Monitor Group filter and performing the Set as clear action. (Broken since v15500)
• Operators were able to configure/edit Downtime schedules using REST API and options in the UI even when the permission to View/Configure downtime schedules was disabled by the Admin.

Issues fixed in 16500

• In MySQL monitor, there was an error while trying to access the Performance and Session tab.
• When selecting data periods other than 'Show Polled Data', the metric values of Performance metric, Tabular Data, and Top N monitors widgets were erroneously displayed as whole numbers for MSSQL builds.

Security Issues

• Users could Add/edit Annotations of other users in Alarms due to insufficient access restriction.

Issues fixed in 16490

• In OPM Plus' APM integration, an erroneous error prompt appeared incorrectly, indicating the need to delete APM Insight monitors when the number of used monitors exceeded the permitted level. (Broken since v16080)
• There was an issue in generating graphs for reports in Spanish language build whenever decimal values were present.
• For APM Plugin builds, the 'Publish Dashboard' option for Monitor Group template dashboards was not working due to a JavaScript error.
• For APM Plugin builds, there was a problem in displaying the 'Publish Dashboard' option for dashboards in the home page.
• Push notification for mobile application has been renewed.

Issues fixed in 16480

• In Windows Cluster monitor, the "Discover and Monitor Nodes" option was not working properly. (Broken since 16340)
• While un-assigning the existing custom field values of type 'List' for monitor groups in Managed server, the changes were not synced properly to Admin server.
• In RBM monitor, there was a problem in collecting data during playback due to an unexpected exception.
• In RBM monitor, there was an issue with page load due to infinite wait which resulted in browser crash during RBM playback.
• In Configure Alarms page, there was a problem in saving the consecutive poll option for Availability attribute when the poll count was provided only for one of the statues (up/down). (Broken since v16460)
• For Windows monitors in WMI mode, there was a problem in displaying data for monitors chosen via the existing drop-down option in the events tab.
• There was an issue in collecting data of OID for HP Chassis and HP disk array metrics in SNMP mode.
• In APM Plugin, there was a delay in fetching Applications data under the Inventory tab due to slow API response.
• There was an issue in accessing the report link attached in the email alert of some MS SQL attributes.
• In Oracle monitor, there was a problem in displaying data under Tablespace tab for Oracle 9i versions.

Issues fixed in 16470

• There was a problem in displaying the Associate/Dissociate credential icon in the Credential settings page.
• HTML tags were accidentally displayed in the Monitor group critical snapshot, Current snapshot and History reports in PDF, CSV and Excel formats.
• In OPM-APM Plugin failover, APM Managed server's secondary server was displayed as down even when it was in Standby mode.
• For server monitors, when the Performance Data Collection option was configured under Settings → Performance Polling, health and availability data were collected only when the status of the monitor changed from 'Up' to 'Down' in subsequent polls.

Issues fixed in 16460

• Session lock data collection query has been optimized to avoid unexpected blocking in SQL Server environment.
• In MSSQL monitor, Availability report was intermittently shown as down for some cases.
• In Widgets, non-English characters in monitor display name fields were not displayed properly when the 'Customize the display name of monitors' option in Global Settings was configured.
• There was a problem in generating the Availability Data report while selecting Custom period option in Chinese Language builds. (Broken since 15570)
• Credential updates in Admin Server will not be synced to the Managed Server when the Credential Name contains special characters.(Broken since 15750)

Issues fixed in 16450

• There was a problem in executing program actions using SSH key-based authentication for remote Linux servers.
• There was missing data in Attribute reports of monitors due to data archival failure.
• There was a problem in generating Monitor Group's Response time report whenever it was accessed before data archival.
• There was a problem in displaying SAP Background Job details whenever the display name of the resource contained special characters.
• There was an issue in displaying the 'Last Modified Time' for File/Directory monitors that were configured in Linux Server.
• There was a problem in syncing the password of users created in OPM to APM Plugin due to which users couldn't log in to APM plugin separately. (For OPM v126322 to v126324 installations with APM v16430 and APM v16440 )
• Timed-out sessions were not being removed from the "Active Session(s)" view located in the user profile icon.
• There was a data collection problem in Applications Manager's Default Bundled Postgres database monitor as the password of the database was not updated after the upgrade. (Broken since v16400)
• The Delegated Admin user had unauthorized permission to delete Downtime schedules created by Admin.

Issues fixed in 16440

• In the Business View widget, the position of some child nodes under a specific Monitor Group was not retained whenever the Monitor Group node was moved.
• In server monitors, there was an issue in clearing existing alerts of the network interface even after specifying it under the 'Ignore specified Networks' option.
• In server monitors, an alert for data collection error was raised mistakenly whenever it occurred just once. Now, an alert will be raised only if it persists in 3 consecutive polls. (Broken since v16060)
• There was an issue in adding/editing ticket actions in SDP MSP integration (Broken since v16370)
• Users with Operator roles weren't able to edit the Downtime scheduler.
• There was an issue in collecting CPU and Disk data for servers in SNMP mode.
• The Database and Cluster Tab in the MS SQL monitor was empty whenever the monitor was re-added after deletion.
• There was an issue in collecting data for IIS Monitor after upgrading to V16270 and above if it was added in v15110 and below.
• There was a slowness in collecting data for servers monitored via SSH mode.
• There was an issue in adding an OpenShift monitor when the 'Collect major metrics using REST API' option was enabled and the 'Service Account Token' size exceeded 250 characters. (Broken since 16280)
• There was an issue in collecting data for WebLogic Integration Monitor. (Broken since 16390)
• There was a problem in updating the profile icon for users whenever the uploaded file name contained special characters.
• In EE Admin Server, there was a mismatch in the 'Used By' count of the actions listed under Actions → View Actions due to stray entries.
• In Microsoft 365 SharePoint Online monitor, there was an issue in fetching the 'Top SharePoint sites based on site storage used' metric while collecting data via REST API mode of data collection. (Broken since 16310)

Issues fixed in 16430

• In Script monitor, there was an issue in generating alerts for scalar numeric attributes when 'polls to retry' option was enabled.
• The Network devices link in Infrastructure Snapshot widget was wrongly redirected to the Bulk Config view with incorrect monitor type.
• There was a problem in listing OPM devices in the Associate Monitor page for Monitor Groups in the Admin server when 'Import all devices' option was disabled.

Issues fixed in 16424

• The Downtime Summary report was wrongly sent to the mail ID configured in Mail server settings whenever there was no action associated to it.
• There was a problem in generating Downtime history, At a glance and Summary reports when the All Monitors option was chosen while scheduling reports for Monitors type. (Broken since : v15570)
• Delegated admin users were unable to access the Scheduled reports that were created by them whenever the reports were later edited by Super admin.
• Incorrect email notifications were being sent which mentioned that the Managed server was up/down whenever Admin server was restarted. (Broken Since v15430)
• There was a problem in adding a Managed server when attempting to push the Auth key whenever the server password contained special characters.
• There was a problem while trying to access the Configure Alarms page from APM Plugin in Admin server.
• In Admin server, there was a problem with the Monitor Errors Status Widget in displaying the error details.
• There was a data collection problem in Applications Manager's Default Bundled Postgres database monitor as the password of the database was not updated after the upgrade. (Broken since v16400)

Security Issues

• CVE-2023-38333: Reflected XSS Vulnerability in product jsp endpoint has been fixed. (Reported by Anonymous working with Trend Micro Zero Day Initiative)

Issues fixed in 16423

• In Sun Solaris monitor, there was a problem in applying Monitor type filter in Alarm view page.
• While disabling Two Factor Authentication in Applications Manager, the appropriate alert box was not displayed properly.
• There was a problem in syncing data from Managed Server to Admin server due to miscalculated ID usage in self monitoring.
• While editing the Heat map and Monitor by Status and Downtime widgets, "Please select at least one Severity" error message was erroneously displayed even when the severity was selected. (Broken since v16360)
• In Monitor Status Overview, Heat Map and Server Uptime widgets, there was a problem in displaying data while creating a Monitor Group Template dashboard with all monitors.
• In Heat map widgets, the Sort by option was not working properly in some cases. (Broken since v16360)
• In Heat Map, Monitor Status Overview, Monitor Error Status and Alarm summary widgets, the count of EUM monitors were displayed incorrectly as it also took the child monitors into account. (Broken since v16360)
• For users with Operator/Delegated Administrator roles, data was not displayed properly in the Heat Map and Monitor Status Overview widgets whenever there were more than 2000 monitors present.
• There was an issue in pushing alerts from the Managed server to the Admin server due to misconfiguration of severity of alerts. (Broken since v15720)
• In Alarms tab, there was a problem in choosing the Select Monitor Group filter and performing the Set as clear action. (Broken since v15500)
• There was an issue in data collection for an unknown monitor that was configured into a Linux monitor through SSH key based authentication. (Breakage since v15550)
• Users were unable to perform Alarm actions when they arrived to the Alarms page from the Heat map and Monitor status overview widgets.(Broken since v15500)
• There was an issue in adding a Windows monitor in SNMP v3 mode when SHA_256 or SHA_512 values were selected for the SNMP Auth Protocol field. (Broken since v16320)
• In Linux, Windows and AIX monitors, network interface details were not displayed properly when clicking on the Interface link in the Topology View widget. (Broken since v15550)
• In WMI mode of Windows monitoring, there was an issue in displaying the CPU/Memory utilization data for the Process monitor.(Broken since v16390)
• In Performance polling settings, garbled characters were displayed while selecting various metrics like Jobs history, Session Lock, VLF, DBCC CHECKDB, DBCC Index, and Replication History in Japanese builds.
• There was a problem in saving the Performance polling settings in Japanese builds.
• There was an issue in pushing alerts from the Managed server to the Admin server due to misconfiguration of severity of alerts. (Broken since v15720)

Issues fixed in 16422

• There was a problem in generating the Availability Data report while selecting Custom period option in Chinese Language builds. (Broken since 15570.
• There was an issue while adding a process/service in the process/service template in foreign language builds. (Broken since 15550)
• Push notification for mobile application has been renewed.
• In MySQL monitor, there was an error while trying to access the Performance and Session tab.
• There was an issue in collecting data for IIS Monitor after upgrading to V16270 and above if it was added in v15110 and below.
• Credential updates in Admin Server will not be synced to the Managed Server when the Credential Name contains special characters.(Broken since 15750)
• There was an issue in adding/editing ticket actions in SDP MSP integration (Broken since v16370)
• Users with Operator roles weren't able to edit the Downtime scheduler.
• In EE Admin Server, there was a mismatch in the 'Used By' count of the actions listed under Actions → View Actions due to stray entries.
• There was an issue in adding an OpenShift monitor when the 'Collect major metrics using REST API' option was enabled and the 'Service Account Token' size exceeded 250 characters. (Broken since 16280)
• There was an issue in collecting data for WebLogic Integration Monitor. (Broken since 16390)
• There was an issue in collecting CPU and Disk data for servers in SNMP mode.
• For server monitors, when the Performance Data Collection option was configured under Settings → Performance Polling, health and availability data were collected only when the status of the monitor changed from 'Up' to 'Down' in subsequent polls.
• In server monitors, there was an issue in clearing existing alerts of the network interface even after specifying it under the 'Ignore specified Networks' option.
• In Windows Cluster monitor, the "Discover and Monitor Nodes" option was not working properly. (Broken since 16340)
• For Windows monitors in WMI mode, there was a problem in displaying data for monitors chosen via the existing drop-down option in the Events tab.
• While un-assigning the existing custom field values of type 'List' for monitor groups in Managed server, the changes were not synced properly to Admin server.
• There was an issue in accessing the report link attached in the email alert for some MS SQL attributes.
• There was a problem in updating the profile icon for users whenever the uploaded file name contained special characters.

Issues fixed in 16420

• The EUM agent in Applications Manager was mistakenly marked as down after restarting whenever an invalid Chrome driver path was specified in the 'Google Chrome WebDriver Path' field under 'WebDriver Settings'.
• In Real Browser Monitor, screenshots were not displayed properly when the monitor was reported as down.
• In the Enterprise Edition Admin server, there was a problem in updating the User role through Rest API.
• There was an issue in adding a Database Query monitor when the length of the 'Existing host' field exceeded 100.
• There was an issue in adding MSSQL server instances as Database Query monitors if they were running on the same machine with different instance names. (Broken since 15460)
• There was a problem in generating the Health percentage report whenever the 'Enable Subgroups in SLA view' option was enabled under Server settings.
• For OPM Plus users with APM Plugin, whenever OPM/Site24x7 was integrated into the Plugin, the external network devices imported from OPM and external monitors imported from Site24x7 were mistakenly included in the OPM Plus licensing.
• The history data of EUM based monitors was not retained after the agent mapping was changed.(It will now be retained for one-to-one agent-monitor mapping alone).

Issues fixed in 16410

• Business View Widget was not displayed properly for Operators. (Broken since 16250)
• There was problem in generating MSSQL Job History and Failed Job History reports when a large number of jobs were involved. (Broken since 15570)
• In MSSQL backend, Dashboard and widget names were garbled for Chinese language builds.
• There was an issue in starting the Managed Servers for APM plugin builds installed in Windows. (Broken since v16370)

Issues fixed in 16400

• In SAP server monitor, there was a problem in displaying the data in the Processes tab.
• There was a problem in associating a new threshold profile for an attribute in the Managed server when it had an existing threshold profile associated from the Admin server.
• In some cases, there was a problem in starting Applications Manager due to some issues in updating the AMServer.properties file. (Broken since v16380)
• There was a problem in creating/editing an SLA when more than 1000 Monitor Groups were present as part of the 'Available Business Applications' field. (Broken since v15570)
• In WMI mode of Windows monitor, the 0x1 process code was wrongly displayed as "failed" in the Task scheduler.
• Under Settings → Performance polling, there was an issue in saving the "Database Servers" settings when the user saved the settings after navigating to a different tab. (Broken since v16350)
• In Threshold and action profile csv report, there was a problem in displaying the attribute details. (Broken since v15500)

Security Issues

• CVE-2023-29442: DOM-Based XSS Vulnerability in product html file has been fixed. (Reported by Rahul from ProjectDiscovery security research team)

Issues fixed in 16213

• In Monitor groups, there was an issue while editing Monitor group name for Operator and Delegated Admin users.
• There was a problem in saving the SMS gateway configuration when the configuration included more than one header.(Broken Since 15470)
• There was a problem while adding URL sequence monitor through HAR import option when the file extension's name exceeded 10 characters.(Broken since v14670)
• In Monitor Group page, structural changes to the Business View were not getting saved properly.(Broken since v16130)
• There was a problem in performing manage/unmanage/ unmanage & reset actions for Windows Services in both WMI and SNMP mode.(Broken since v15550)
• Support for data collection through MSAL authentication in Azure monitor.
• There was a problem in displaying third level attributes in Enable Reports and Trend Analysis Reports page for SQL anywhere and Nginx plus monitors. (Broken since v15900)
• CVE-2023-28340:XML External Entity (XXE) Vulnerability in SOAP Response of Web service monitor has been fixed. (Reported by Da22le)
• There was a problem in syncing data between admin and managed servers while users upgraded from versions below 15430 to versions upto 16320 whenever an unsupported encoded character was encountered in the Enterprise edition sync key.

Issues fixed in 16211

• There was a problem in collecting data for certain tables in IBM Websphere MQ, Rabbit MQ, VMWare ESX and GlassFish monitors when the table name contained special characters.(Broken since v16200)
• In SAP CCMS monitor, there was a problem in displaying data for custom attributes that contained special characters in their names. (Broken since v15570)
• There was an EOF issue while adding Server monitor via SSH mode.
• In Real User Monitor, the Day Picker option was not working properly. (Broken from Base version)
• In Monitor Groups, while un-assigning existing custom field values of type 'List', it wasn't getting updated correctly.(Broken since v14810)
• There was an issue in displaying Telnet Child monitors in the Telnet EUM parent monitor as the table name had special characters. (Broken since v16200)
• Users with the Operator role were not able to manage, Unmanage and Reset monitors from the Bulk Configuration view when more than 25 monitors were selected.(Broken since 15520)
• In Database Query monitor, Edit and Update were not working properly. (Broken since v16200)
• There was an issue in executing actions when more than 76 monitors were selected from Alarms tab. (Broken since v15500)
• There was a breakage in Analytics Plus integration due to the ShowPolledData API.(Broken since 15990)
• In OpManager integration, there were issues in accessing the data of network devices listed in the Bulk Config View, HeatMap and Alarm Summary widget. (Broken since v16190)
• There was an issue while clicking monitor links for Network Devices in "Bulk Config View".(Broken since 16190)
• Bulk import CSV option was not working properly in the Chrome Browser as the file type wasn't recognized.
• The Monitor Error Mail option under Settings -> Alarms/Actions didn't work when multiple Email IDs were provided.(Broken since 15620)
• The Edit Tabs option under the User profile icon was broken for User, Operator and Manager roles. (Broken since v16190)
• In Alarm Summary Widget, there was an error while clicking any monitor group name.(Broken since 16220)
• When more than 16 threshold profiles were deleted from Admin server, they were not synced in the Managed server. (Broken since v15800)
• Mail server configuration was not working properly when invalid values were provided for SMTP server name, SMTP port and connection URL fields.(Broken since 15200)

Issues fixed in 16210

• On enabling Easy Upgrade, there was a problem in About page while clicking Latest Compatible Download link. (Broken since 16170)
• On enabling Two Factor Authentication, there was an issue in receiving the Login page OTP via mail.(Broken since 16190)
• There was a problem in starting Applications Manager after PPM upgrade (from 15006 to 16092).

Issues fixed in 16200

• In Site24x7 monitors, there was an issue in fetching chart data when the data count exceeded the string array size.
• There was a problem in data collection of VMware Connection Broker Monitor when machines were assigned with Active Directory users. (For Version 8 only)(Broken Since 16030)
• In MSSQL monitor, "No Data Available" message was displayed while trying to collect database metrics for Database tab.(Occurs in SQL 2008 version only)(Broken Since 15820)
• There was a problem in accessing the alarm history link for Windows Performance Monitor. (Broken since 16130)
• In JBoss application server monitor, newly deployed application and un-deployed application information was updated only when the server was restarted.
• There was an issue while executing Virtual Machine actions manually in foreign language builds.
• In Settings tab, there was a problem in adding SSH credential profile when the private key value's length exceeded 2000.
• In Alarms tab, there was an issue in creating PDF report.
• There was a problem in creating SNMP Trap action when invalid OID values were present.
• In Reports tab → ERP, "More" option was not working properly.

Issues fixed in 16190

• OPM Plus users were experiencing slowness in APM Plugin.
• Health and Availability status of MongoDB monitors were not updated even when the servers were unreachable. (Broken since v16000)
• In Enterprise Edition, there were sync issues between Admin and Managed servers when the Admin Server hostname contained special characters. (Broken since v15720)
• In OAuth, Scope field value of Client credential and Resource owner grant types are now stored in the database.

Issues fixed in 16180

• JMX/SNMP dashboard page was incorrectly shown upon enabling/disabling reports for custom attributes in SAP CCMS monitor. (Broken since v15600)
• Bug reporting page was incorrectly shown when custom attributes were added from SAP CCMS monitor. (Broken since v16140)
• JMX/SNMP dashboard page was incorrectly shown upon deleting custom attributes in SAP CCMS monitor. (Broken since v15600)
• PowerShell prerequisites missing error was shown for Microsoft 365 monitors due to the non-availability of Test-NetConnection command in some Windows servers.
• Business Hour based thresholds were not working properly for users with non-English language and locale machine installations.
• DataTables warning Ajax error popup was shown upon accessing the alarm details of JMX Notification in 'Alarms' tab.
• Monitor name was not shown for the replaceable tag $MONITORNAME while configuring email action for tabular attributes. (Broken since v14830)
• Error page was shown upon accessing the Monitor, Monitor Groups and Add-On Settings pages after restart due to a failed attempt in integrating SDP Cloud using invalid URL.
• There was an issue with editing and updating the JMX/SNMP dashboard monitor from the 'Monitor Details' page.
• In Enterprise Edition, some unsupported action types were wrongly listed while configuring alarms for attributes in Admin server.

Issues fixed in 16170

• There was an issue while adding the REST API monitor via REST API when the non-mandatory parameters (such as 'Should contain', 'Should not contain') are not provided.
• Website content monitor failed to report webpage defacement changes when the webpage response contained INVALID XML characters.
• In SAP HANA Multitenant system, there was an issue in fetching Disk Utilization and Disk Volume data.
• In the add monitor page, discovery of 'All services' for a specific host wasn't working properly.(Broken since 14460)
• 'Invalid cluster name' error occurred while updating Redis, Cassandra and Zookeeper monitors.
• For Linux monitors in SNMP mode, disk name was added as null.
• User was unable to create or edit new profile in APM Insight Agent Configuration profile.(Broken since 15990)
• The relevant data in the mapped table was not getting deleted, in the mentioned cases:
• Upon deleting an APM Insight monitor. (Broken since 15910)
• Upon deleting any scaled down APM Insight cloud monitor in autoscaling mode. (Broken since 15910)

Issues fixed in 16160

• In ADDM, default credentials were mapped for MS SQL monitors instead of user's credentials.(Broken since v14560)
• The URL linked to 'Reported by Applications Manager' in the APM Plugin email alerts was redirected to an incorrect web address.
• There was an error in displaying Free memory and Total memory metric values of MongoDB monitor running on Linux servers.
• There was a problem in updating the hostnames of child monitors when it was updated using the 'Update Hostname/IP' option in Bulk Config view.
• Applications and servers were discovered even when the Discover unknown devices during ADDM discovery option was not enabled.(Broken since v15870)

Issues fixed in 16150

• There was an issue with logging in using default credentials when Applications Manager was installed on XenServer VM in Linux.
• In the Real Browser Monitor (RBM), agents were not listed in the transaction recorder tool for Chrome extension in non-English installations of Applications Manager.
• Basic Authentication was not working in the Real Browser Monitor (RBM).
• There was an issue in syncing data from Applications Manager to Analytics Plus due to incorrect configuration of ListMonitor REST API. (Broken since v15780)
• In Enterprise Edition, there were sync issues between Admin and Managed servers after service pack upgrade. (Broken since v15720)

Issues fixed in 16140

• In VM monitors under VMware ESX/ESXi, service availability status changes, updated in the target VM server were not reflected in APM.
• In Settings tab, enabling Receive Ping Response resulted in alert generation for Linux monitors on every poll.
• In Admin server, there was an error in Configure Alarms page while trying to associate threshold via Monitor Type template for an attribute, without changing monitor type drop down.
• There was an error while executing Container Actions in foreign language builds.
• User unable to create or edit actions with other language characters in display name.
• Removed support for MySQL database backend in Service Pack installations due to security reasons.

Issues fixed in 16135

• There was a problem in saving the SMS gateway configuration when the configuration included more than one header.(Broken Since 15470)
• There was a problem while adding URL sequence monitor through HAR import option when the file extension's name exceeded 10 characters.(Broken since v14670)
• In Monitor Group page, structural changes to the Business View were not getting saved properly.(Broken since v16130)
• There was a problem in performing manage/unmanage/ unmanage & reset actions for Windows Services in both WMI and SNMP mode.(Broken since v15550)
• Support for data collection through MSAL authentication in Azure monitor.
• There was a problem in displaying third level attributes in Enable Reports and Trend Analysis Reports page for SQL anywhere and Nginx plus monitors.(Broken since v15900)
• CVE-2023-28340: XML External Entity (XXE) Vulnerability in SOAP Response of Web service monitor has been fixed. (Reported by Da22le)
• There was a problem in syncing data between admin and managed servers while users upgraded from versions below 15430 to versions upto 16320 whenever an unsupported encoded character was encountered in the Enterprise edition sync key.

Issues fixed in 16134

• In Enterprise Edition, there was a slowness in syncing data between Admin and Managed servers with MS SQL DB backend when direct sync was enabled. (Broken since v13990)
• In Enterprise Edition, there was an issue with syncing data between Admin and Managed servers when the monitor's data collection error message contained comma symbols. (Broken since v15970)
• There were issues in upgrading PostgreSQL database due to insufficient DB user permissions.
• There was problem in syncing proxy setting details from OPM to APM Plugin when 'No Proxy For' option was enabled. (Broken Since v15770)
• In vCenter Discovery, there was a problem with Resource Pools being repeatedly discovered.

Issues fixed in 16133

• Users with the Operator role were not able to manage, Unmanage and Reset monitors from the Bulk Configuration view when more than 25 monitors were selected.(Broken since 15520)
• The Compare Reports option under Attribute reports wasn't working when more than 10 monitors were selected.(Broken since 15570)
• In SAP CCMS monitor, there was a problem in displaying data for custom attributes that contained special characters in their names. (Broken since v15570)
• The Monitor Error Mail option under Settings → Alarms/Actions didn't work when multiple Email IDs were provided. (Broken since 15620)
• In Alarms tab, there was an issue in creating PDF report.(Broken since 15500)
• There was an issue in bulk import option of server monitors in SNMP mode. (Broken since v16050)
• When more than 16 threshold profiles were deleted from Admin server, they were not synced in the Managed server. (Broken since v15800)
• In Monitor Groups, while un-assigning existing custom field values of type 'List', it wasn't getting updated correctly.(Broken since v14810)
• There was an issue in executing actions when more than 76 monitors were selected from Alarms tab. (Broken since v15500)
• In Bulk import, there was an issue in configuring the Error if response code field for URL monitors.
• There was an issue while executing Virtual Machine actions manually in foreign language builds.(Broken since 15470)
• Mail server configuration was not working properly when invalid values were provided for SMTP server name, SMTP port and connection URL fields.(Broken since 15200)
• In APM Plugin build, Under Reports → ERP → More option wasn't working. (Broken since 15570)
• In Settings tab, there was a problem in adding SSH credential profile when the private key value's length exceeded 2000.

Issues fixed in 16132

• In Enterprise Edition, there were sync issues between Admin and Managed servers when the Admin Server hostname contained special characters. (Broken since v15720)
• Health and Availability status of MongoDB monitors were not updated even when the servers were unreachable. (Broken since v16000)
• There was an issue in syncing alerts to Admin server when the alert message length exceeded the restricted limit.
• There was a problem in starting Applications Manager after PPM upgrade (from 15006 to 16092).
• There was an issue in restoring backend database using RestorePGSQL script files. (Broken since v16000)

Issues fixed in 16131

• There was an error while executing Container Actions in foreign language builds.
• User was unable to create or edit actions when display name contained other language characters.
• There was an issue in syncing data from Applications Manager to Analytics Plus due to incorrect configuration of ListMonitor REST API. (Broken since v15780)
• In Enterprise Edition, there were sync issues between Admin and Managed servers after service pack upgrade. (Broken since v15720)
• There was an issue with logging in using default credentials when Applications Manager was installed on XenServer VM in Linux.
• In Settings tab, enabling Receive Ping Response resulted in alert generation for Linux monitors on every poll.

Issues fixed in 16130

• In Windows Performance Counter monitor, special characters were not restricted for Hostname parameter. (Broken since 15500)
• If the user cancels the operation while adding attributes in the SNMP/Network monitor, unauthorized access error was returned. (Broken since 15600)
• In the View threshold page -→ Used By option, deleting the configuration resulted in redirection to Intro page. (Broken since 15500)
• There was an error while adding Managed server from Admin server when Managed Server's name contained special characters.
• OPERATOR users were unable to create dashboard for VCenter and its Sub-Groups.
• In the Business view, there was an issue in changing the position of nodes and adjusting the zoom level when Business View name contained special characters. (Broken since 15520)
• APM Insight's Performance Polling page wasn't working in Chinese builds. (Broken since 15620)
• Attribute history report generation of web services monitor failed when the operation name contained special characters.
• In the French build, the option to send Attribute report via email wasn't working.
• While saving Performance polling option for Script monitor, page was redirected to the Home page. (Broken since 15520)
• User was unable to switch to Classic view from Mobile view. (Broken since 15520)
• In the event of a license expiry, there was an issue in unmanaging monitors when All Monitors and EUM Monitors options were checked.
• While adding monitor for VMWare Virtual Infrastructure, RHEV, OVM or VMware Horizon Discovery, page was redirected to index page, due to improper error handling.
• In Websphere MQ monitor:
  • In the Services tab, service actions were not working properly.
  • In the EventLog tab, search option wasn't working and there was no data about status.

Issues fixed in 16120

• In the Amazon ECS Monitor, if an ECS cluster had a large number of services, tasks, and container instances, they were not being discovered correctly.
• For Custom Monitor and Script Monitor, the table header columns have now been sorted in ascending order.
• $RCAMSG_PLAINTEXT and $SHORT_MESSAGE replaceable tags were not working properly on Error and Health Attribute alerts.

Issues fixed in 16110

• Error occurs while updating the downtime reason for a monitor which is down for more than a day.
• Creating Alarm escalation rule fails while using delegated admin role.
• While searching with IP address in the Search bar using "Search in all" filter shows irrelevant monitors in search results.
• While adding or collecting the metric for Windows server monitor in WMI mode of monitoring, APM calibrated a high level authentication, to establish a remote connection using the VBscript for Security Purpose as per the Microsoft KB5004442.
• In the Monitors tab dropdown, the World map view gets redirected to a blank page.(Broken since 16090)
• Monitor addition fails while adding version >= 13003 of Service desk plus as a monitor.
• Occurance of Polling delay, while collecting job details in MS SQL monitor.

Issues fixed in 15905

• The default authentication level for Windows WMI mode of monitoring has been set to 'Packet Privacy'.
• In Japanese builds, the RCA message was incomplete when the message contained $RCAMESSAGE and $RCA_PLAINTEXT replaceable tags.

Issues fixed in 15904

• In Enterprise Edition, there were sync issues between Admin and Managed servers when the Admin Server hostname contained special characters. (Broken since v15720)
• There was a problem in viewing the monitor details of Managed servers from the Admin Server. (Broken since 15520)

Issues fixed in 15903

• In APM Insight, there was a problem in creating New Configuration profiles.
• There was an error while executing Container Actions in foreign language builds.
• There was an issue with logging in using default credentials when Applications Manager was installed on XenServer VM in Linux.
• In Enterprise Edition, there were sync issues between Admin and Managed servers after service pack upgrade. (Broken since v15720)
• There was an issue in syncing data from Applications Manager to Analytics Plus due to incorrect configuration of ListMonitor REST API. (Broken since v15780)
• There were issues in starting Applications Manager when the user removed 'CREATE ANY DATABASE' privilege after first restart in MS SQL backend database.
• User was unable to create or edit actions when display name contained other language characters.
• In Settings tab, enabling Receive Ping Response resulted in alert generation for Linux monitors on every poll.

Issues fixed in 15902

• While importing user group in AD domain, User and Manager login roles were wrongly assigned, for the created user during the first login.
• There were issues in applying Alarm Template to newly-added monitors. (Broken since v15901)
• There was a delay in triggering monitor-level error alarms for Server monitors.
• Unable to Create Mbean and Trap Actions in Japanese Build.
• While generating dashboard report via scheduled reports for unsupported widgets in PDF, blank space was displayed in place of the widgets, which is now replaced with a message with the list of unsupported widget types present in chosen dashboard.
• Optimization done in Attribute History report page to reduce initial loading time.
• While adding URL monitors using Bulk Import option, default values were being accepted instead of customised values, during monitor creation.
• There was an issue with Windows version being wrongly appended as 2000 in default monitor.
• While adding or collecting the metric for Windows server monitor in WMI mode of monitoring, APM calibrated a high level authentication, to establish a remote connection using the VBscript for Security Purpose as per the Microsoft KB5004442.
• When multiple Real Browser Monitors (RBM)poll at a time, EUM Agent sends performance metrics response of all RBM monitors to AppManager in XML, leading to display of single monitor performance metrics data for all the other RBM monitors.
• Alert message was also sent as attachment when Outlook mail ID was used as 'To address' while configuring Email action for attachment-based mail alerts.
• $RCAMSG_PLAINTEXT and $SHORT_MESSAGE replaceable tags were not working properly on Error and Health Attribute alerts.
• While searching with IP address in the Search bar using "Search in all" filter shows irrelevant monitors in search results.

Issues fixed in 15901

• Failure in importing AD user when the display name of User is having any special character.
• SSL certificate was not used by the Applications Manager server although the same was uploaded successfully under Settings → Manage Certificates. (Broken since v15500)
• Failure in Export PDF/CSV and Send Email options for Disk Partition report of Capacity Planning.
• There were issues in collecting data for some metrics of newly added MS SQL monitors although the default polling status was set to 'Collect data during every poll' for all monitors under Admin → Performance Polling → MS SQL.
• In Enterprise Edition, data inconsistency was found in the API response when ListServer REST API was executed from Admin and Managed servers.
• Redirection to Home page occurs for some pages, while clicking Upload File link.
• There was an issue with logging into the Web Transaction Recorder for domain users.(Broken since v15520)
• While logged in as Operator, page gets redirected to Intro tab during alarm configuration for .NET monitor.
• There was an issue with adding the Windows Cluster monitor when the option 'Discover and Monitor Nodes' was enabled. (Broken since v15780)
• In Enterprise Edition, Process and Service templates were not synced from Admin server to Managed server. (Broken since v15800)
• Deletion of NetworkAdapter for Windows server monitor caused redirection to Intro page. (Broken since 15550)
• Windows Eventlog Rules were not being synched from Admin to Managed server. (Broken since 15800)
• In Availability, Health and Alarm Summary widget, page was incorrectly redirected to homepage upon clicking the monitor count of Critical/Clear alarms
• Successive addition of dependent devices in Configure Alarm page, causes redirection to Intro page.
• Incorrect query execution lead to increased data file size of MS SQL backend databsase.
• Delay caused in association while using Alarm template in case of a large monitor count.
• Unable to apply license for language builds other than English. (Broken since 15540)
• Failure in auto sync of existing OneAuth from Admin to Manage server. (Broken since v15710)
• Error was shown upon adding the REST API monitor when the URL contained whitespace or asterisk (*) symbol.
• Clicking on Ruby/Node JS monitors under APM Insight, redirected to an error page
• Delay in accessing Attribute Reports page is fixed.
• Error occured in associating Threshold from Admin server to Managed server.
• Clicking on Applications report and At a Glance report under the Monitor group actions for any Monitor group, redirected to Intro tab.
• There was an issue with executing an Availability report schedule for Monitor Group when more than 10 resources were selected with 'Send consolidated report' option enabled, under Settings → Schedule Reports. (Broken since v15570)
• Generating Health and Availability report in Web application group redirected to Home page.
• In MS SQL monitor, clicking on selective database to view the last seven days report, redirected to Home page.(Broken since v15520)
• User or Manager roles were missing in Domain User Group page.
• Faced failures in the option to perform Easy Upgrade.
• A random port/RMI port opened in the system by Applications Manager triggered an Antivirus scan, leading to an Out of Memory issue in the tool.

Issues fixed in 15980

• Windows Eventlog Rules were not being synched from Admin to Managed server. (Broken since 15800)
• Deletion of NetworkAdapter for Windows server monitor caused redirection to Intro page. (Broken since 15550)
• Failure in displaying proper error message for Windows monitor in Admin server, while trying to add existing monitor without selecting OS.
• Error in enabling Jobs monitoring for MS SQL Server, via the provided 'Click here' link, which instead redirects to Intro tab. (Broken since 15620)
• Unable to apply license for language builds other than English. (Broken since 15540)
• Trying to update Hostname using script resulted in receiving an exception.

Issues fixed in 15970

• There were issues in collecting data for some metrics of newly-added MS SQL monitors although the default polling status was set to 'Collect data during every poll' for all monitors under Admin → Performance Polling → MS SQL.
• In Oracle monitor, session information for locks were still shown under 'Sessions waiting for a lock' and 'Sessions holding a lock' in 'Locks' tab, although the blocked sessions were cleared on Oracle DB server.
• In the Real Browser Monitor (RBM), network performance data was not shown for Chrome playback.
• There was an issue with adding LDAP server monitor without credentials from Admin server.
• There was an issue with adding the HAProxy monitor when the HAProxy server's page response did not contain the header "HAProxy".
• Page was wrongly redirected to homepage upon updating the PHP monitor which was added with SSL enabled.

Security issues

• No rate limiting for Authenticator rest-api url is fixed. (Reported by Rahul Srivastava)

Issues fixed in 15960

• SAP Server monitor faced parsing issues in collecting data for the attribute 'Last Run Date and Time' of Background jobs.
• Associating monitor with Monitor group failed during initial product startup, in some uncommon cases of MySQL/MSSQL backends.
• Clicking on Ruby/Node JS monitors under APM Insight, redirected to an error page.

Issues fixed in 15950

• Clicking on Applications report and At a Glance report under the Monitor group actions for any Monitor group, redirected to Intro tab.

Issues fixed in 15940

• Error was shown upon adding the REST API monitor when the URL contained whitespace or asterisk (*) symbol.

Issues fixed in 15930

• In Availability, Health and Alarm Summary widget, page was incorrectly redirected to homepage upon clicking the monitor count of Critical/Clear alarms
• SSL certificate was not used by the Applications Manager server although the same was uploaded successfully under Settings → Manage Certificates. (Broken since v15500)

Issues fixed in 15920

• In Windows monitor, there was a mismatch in the CPU Utilization value shown in the monitor's overview page and the Breakup of Process Information report sent with the alert mail.
• An error popup was shown upon accessing the 'Alarms History' page from monitor dashboard.

Issues fixed in 15900

• Nginx Plus attributes were mistakenly listed in Nginx monitor reports.

Issues fixed in 15512

• There were issues in performing backup of large PostgreSQL backend database due to timeout error during script execution.
• There were issues in generating attribute report for some Windows monitors in 'Reports' tab. (Broken since v15270)
• In MS SQL monitor, an error popup was shown upon accessing the 'Session' tab whenever there was no data available under Session Details.
• In MySQL monitor, bug reporting page was wrongly shown upon clicking any configuration information under 'Configuration' tab.
• In JMX Applications monitor, page was incorrectly redirected to homepage upon executing the MBean action from monitor dashboard. (Broken since v15500)
• Blank page was shown upon updating the settings for database servers under Settings → Performance Polling → Database servers.
• Blank page was shown upon updating the password during password expiry scenario. (Broken since v15470)
• Access restriction page was shown upon clicking the 'View Audit Logs' option under 'Monitor Group Actions' in a Monitor Group for Delegated Admin users. (Broken since v14570)
• Alarms were not filtered upon choosing a monitor under 'Filter by Monitor Type' dropdown in 'Alarms' tab. (Broken since v15500)
• In 'Alarms' tab, there were issues in executing ticket action after ServiceDesk Plus MSP (SDP MSP) was integrated. (Broken since 15500)
• Bug reporting page was wrongly shown upon clicking the 'Create Global Trap Action' option for SNMP Trap Action under Actions → View Actions. (Broken since v15300)
• Access restriction page was shown upon clicking over an Event value under 'SLA Statistics' in 'SLA' tab for users with 'Manager' role. (Broken since v15500)
• There were issues in generating attribute report for some Windows monitors in 'Reports' tab. (Broken since v15270)
• In Enterprise Edition Admin server, an error message was shown upon accessing the 'Monitor Summary' page (under Settings → Support → Monitor Summary) when the Managed server name contained '.' symbol. (Broken since v15000)

Issues fixed in 15570

• In MS SQL monitor, an error popup was shown upon accessing the 'Session' tab whenever there was no data available under Session Details.
• In JMX Applications monitor, page was incorrectly redirected to homepage upon executing the MBean action from monitor dashboard. (Broken since v15500)
• 'Filter Monitor Groups' option was not working for Capacity Planning under 'Reports' tab.
• Incorrect value was shown for the replaceable tag '$DATE' in the 'Alarm Details' page upon executing the 'Log a ticket' action.
• Two-Factor Authentication (TFA) was not working for users upgrading from v15510 to the latest version.
• Access restriction page was shown upon clicking over an Event value under 'SLA Statistics' in 'SLA' tab for users with 'Manager' role. (Broken since v15500)
• In ServiceDesk Plus (SDP) On-Demand integration, request template data was not shown upon selecting an Incident Template from the dropdown in 'Log a ticket' action page.
• In Enterprise Edition, MS SQL actions for Database, Jobs, Users and Server Configuration were not shown in the Admin Server irrespective of the permissions set under Settings → User Management → Permissions.

Issues fixed in 15550

• In MySQL monitor, bug reporting page was wrongly shown upon clicking any configuration information under 'Configuration' tab.
• There was an issue in adding Linux monitor via Bulk Import using Credential Manager when Public Key Authentication was enabled while adding the credential details.
• Alarms were not filtered upon choosing a monitor under 'Filter by Monitor Type' dropdown in 'Alarms' tab.
• Annotations were not shown for an alarm upon adding them from 'Alarm History' page and 'Monitor by Status and Downtime' widget. (Broken since v15520)
• In Settings → Threshold & Anomalies, there was an issue with creating Anomaly Profile based on Custom Expression whenever parantheses were used in the expression.
• There were issues in generating attribute report for some Windows monitors in 'Reports' tab. (Broken since v15270)
• In Reports → End User Monitoring(EUM), changing the time period in 'At a glance' report redirected to homepage for EUM monitors. (Broken since v15250)
• Graphs were not aligned properly with their corresponding headings upon exporting the 'At a glance' report into a PDF file.
• Timestamp and runtime of the generated report was not shown in the Availability percentage report upon exporting into a CSV file.
• Upon updating the host details for 'Execute program' action created with Script Location as 'Remote Server', the page was incorrectly redirected to homepage on submit.
• Upon clicking over the 'Configure Alarms' option for attributes from the monitor's dashboard page, the page was incorrectly redirected to homepage for users with 'Operator' role. (Broken since v15520)
• In URL Sequence monitor, page was incorrectly redirected to homepage upon clicking over any URL in the monitor details page. (Broken since v15520)
• In ServiceDesk Plus MSP (SDP MSP) integration, creating a 'Log a ticket' action based on Credential incorrectly redirected to homepage on submit. (Broken since v15470)
• Search bar was not working for users with APM Plugin installations. (Broken since v15520)

Issues fixed in 15540

• In MS SQL monitor, blank page was shown upon selecting 'All Jobs' from the dropdown while viewing the history of failed status for the last 24 Hours under 'Jobs' tab.
• In MS SQL monitor, access restriction page was shown upon clicking the Edit icon under 'Enable/Disable advanced options' in 'Configuration' tab for Delegated Admin users.
• Access restriction page was shown upon clicking the 'View Audit Logs' option under 'Monitor Group Actions' in a Monitor Group for Delegated Admin users.
• There was an issue with updating the polling interval for JMX applications using the 'Update Polling interval' action from Bulk Configuration View.
• Alert mail was not triggered when the URL's availability went down, although the option 'Check URL availability' was enabled under Settings → Availability Settings.
• In Enterprise Edition Admin server, there was an issue in associating action for monitor's health and availability when there were no threshold profiles present under Configure Alarms.

Issues fixed in 15530

• In Real User Monitor (RUM), boundry was marked incorrectly for India map in 'Summary Report - World View'.
• In Directory monitor, there was an issue with filtering files in Windows directory based on Last Modified Time and Creation Time.
• In ADDM, duplicate monitors were added whenever the resources were discovered using the 'Discover' option.
• In ADDM, there were issues in discovering and adding the manually-deleted applications whenever the 'Discover and Add' option was used.
• Blank page was shown upon updating the settings for database servers under Settings → Performance Polling → Database servers.
• In 'Alarms' tab, there were issues in executing ticket action after ServiceDesk Plus MSP (SDP MSP) was integrated. (Broken since 15500)
• Error message was shown when the Alarm Summary widget was added in a newly-created dashboard and published.
• In OAuth Provider, access token was not refreshed after expiry for 'Client Credentials' grant type under Settings → OAuth Provider.
• There was an issue in saving the SNMP Trap Listener when the Trap OID ended with '.*' characters for SNMP Trap version v3.
• There were issues in saving the default Agent Configuration Profile settings for APM Insight applications. (Broken since 15480)
• In Enterprise Edition Admin server, an error message was shown upon accessing the 'Monitor Summary' page (under Settings → Support → Monitor Summary) when the Managed server name contained '.' symbol.
• In Enterprise Edition, there were issues in associating actions with Warning severity to monitors in Managed servers when applied from Admin server through Monitor Group Alarm Template.

Security Issues

• CVE-2022-23050 : Insecure file upload by an authenticated admin user is fixed.

Issues fixed in 15511

Security Issues

• CVE-2022-23050 : Insecure file upload by an authenticated admin user is fixed.

Issues fixed in 15510

• In Webpage Analyzer monitor, there were issues in collecting data when proxy was enabled for the monitor.
• There were issues in loading the data for Monitors by Status & Downtime widgets in web client.
• Alarms were not reset upon providing the Windows service Resource ID as input in UnmanageAndResetMonitor REST API.

Issues fixed in 15500

• In RHV monitor, incorrect value was shown for CPU Utilization under 'Overview' tab.
• In Active Directory monitor, the health of the monitor was not affected during authentication failures.
• Bug reporting page was incorrectly shown when 'vCenter' monitor type was chosen from the dropdown in Add Monitor page.
• Access Restriction page was shown upon accessing the 'View Actions' page for 'Operator' and 'User' roles. (Broken since v15470)
• In ADDM, incorrect date was shown after the discovery was scheduled weekly/monthly under Admin → Add/Discover → Network Discovery.
• In 'Reports' tab, there were issues in displaying graphs for some attributes when the report was generated for users with 'Operator' role. (Broken since v15000)
• In Schedule Reports, the Monitor Group Status was not shown properly in Critical Snapshot report when the status was clear.
• In SMS Gateway, the Account Type functionality was working incorrectly for Clickatell accounts.

Windows monitoring issues:

• There were issues in adding Scheduled Tasks for users with Chinese language OS.
• There were issues in unmanaging a service under 'Service Details' in 'Overview' tab. (Broken since v15370)
• There was an issue in adding the monitor when the username contained '!' symbol.

Security Issues

• CSRF vulnerability in "Threshold - CSV" module is fixed. (Reported by Rahul)

Issues fixed in 15481

• In Windows monitor, there were issues in unmanaging a service under 'Service Details' in 'Overview' tab. (Broken since v15370)
• In Webpage Analyzer monitor, there were issues in collecting data when proxy was enabled for the monitor.
• Bug reporting page was incorrectly shown when 'vCenter' monitor type was chosen from the dropdown in Add Monitor page.
• Blank page was shown upon updating the settings for database servers under Settings → Performance Polling → Database servers.
• Access Restriction page was shown upon accessing the 'View Actions' page for 'Operator' and 'User' roles. (Broken since v15470)
• There were issues in creating/modifying actions when the display name contained non-English characters. (Broken since v15370)
• While creating a Java action under Settings → Actions, the page was incorrectly redirected to homepage on submit when the display name contained non-English characters.
• In 'Reports' tab, there were issues in displaying graphs for some attributes when the report was generated for users with 'Operator' role. (Broken since v15000)
• There were issues in loading the data for 'Monitors by Status & Downtime' widgets in web client.
• In APM Insight, there were issues in saving the Agent Configuration Profile settings under Settings → APM Insight Agent Configuration Profiles. (Broken since 15480)

Issues fixed in 15402

• In RHV monitor, incorrect value was shown for CPU Utilization under 'Overview' tab.
• In Linux monitor, there were issues in collecting data when a user-defined port was configured while adding the monitor in SSH mode.
• In Webpage Analyzer monitor, there were issues in collecting data when proxy was enabled for the monitor.
• Bug reporting page was incorrectly shown when 'vCenter' monitor type was chosen from the dropdown in Add Monitor page.
• There were issues in removing the monitors from monitor group in 'Associate Monitor' page. (Broken since v15340)
• In Configure Alarms, dependent device configurations were wrongly removed upon removing the threshold configurations for the attributes.
• There were issues in creating/modifying actions when the display name contained non-English characters. (Broken since v15370)
• There were issues in adding monitor groups for APM Plugin installations. (Broken since v15400)
• There were issues in creating ticket action and to save ServiceNow integration settings when APM Plugin was accessed from OpManager GUI.

Issues fixed in 15480

• In MS SQL monitor, data collection was occurring for DBCC CheckDB and DBCC Index metrics and their associated alerts were not cleared, although data collection was disabled for those metrics under Admin → Performance Polling → MS SQL.
• In Apache Kafka monitor, the health of Topics were incorrectly shown as down under 'Topic Details' tab.
• CPU core details were not shown in the API response upon executing the GetMonitorData REST API.
• In ServiceDesk Plus (SDP) Integration, an error message was shown since the proxy was not bypassed for the SDP host address specified during SDP configuration.

Issues fixed in 15470

• In Linux monitor, there were issues in collecting data when a user-defined port was configured while adding the monitor in SSH mode.
• In Server monitors, there were issues in collecting data after the monitors were added via SSH Private key using SSH mode of monitoring. (Broken since v15350)
• In MS SQL monitor, there was a slowness in collecting data for all the metrics due to improper handling of OutOfMemoryException.
• In Couchbase monitor, there were issues in collecting data for all the metrics under 'Data Buckets' tab.
• In Microsoft 365 monitoring, invalid rows were added under 'Sites Statistics' table in 'Sites and Applications' tab for SharePoint Online monitor.
• In Microsoft 365 monitoring, Skype for Business Online Service health was not shown under 'Overview' tab for Microsoft Teams monitor.
• In Citrix Virtual Apps and Desktop monitor, there were issues in collecting data for all the metrics under 'Overview' tab.
• In Citrix Hypervisor monitoring, Resource Pool was not discovered after the Citrix Hypervisor host was added.
• In VMware ESXi monitor, configured Guest OS and added processes/services for VMs were lost after the build was restarted. (Broken since v15250)
• In Database Query Monitor, no data was shown for 'Row Count' attribute for service pack installations. (Broken since v15000)
• Custom monitors that were created under the 'Servers' category went down on restart. (Broken since v15180)
• In CouchBase monitor, there were issues in collecting data for all the metrics under 'Server Nodes' tab.
• Issues were seen in collecting data for all the metrics in Nginx monitor. (Broken since v14050)
• There were issues in adding the REST API monitor when the API URL contained special characters.
• When a monitor was added via REST API or Bulk Import using Credential Manager, the credential details were missed in the 'Edit Monitor' page.
• There were issues in removing the monitors from monitor group in 'Associate Monitor' page. (Broken since v15340)
• In 'Alarms' tab, no data was shown after all the monitor types were deselected from the filter dropdown.
• In Configure Alarms, Dependent Device configuration for the monitor's availability was not working. (Broken since v15370)
• In Configure Alarms, dependent device configurations were wrongly removed upon removing the threshold configurations for the attributes.
• In Configure Alarms, dependent devices were displayed garbled while configuring the monitor's availability for Chinese installations.
• WebHook/REST API action was not working with FORM payload for Memory Utilization attribute in Server monitors.
• There was an issue in configuring mail server using port 465 with SSL connection enabled for Gmail server.
• Replaceable tags were not working for Host Name and Host IP details while configuring email action for SAP CCMS monitors.
• No options were displayed for Oracle EBS monitor in Admin → Performance Polling. (Broken since v15200)
• The 'Virtualization' section in the 'Reports' tab displayed a blank page when the GUI was accessed before the build was started completely.
• In History Data reports, 'I/O Wait Time %' attribute was wrongly shown in the dropdown for HP-UX monitors.
• Password change was not prompted for the newly-created users during first login when the user profile was updated before first login in Admin → User Management → Profiles. (Broken since v15050)
• Polling delay alert was incorrectly raised for unmanaged monitors configured under Admin → Self Monitoring.
• Service details were incorrectly shown as servers in the API response when when the value for the field 'type' was specified as 'all' in ListServer REST API.
• Invalid IP addresses were shown in the API response when the value for the field 'type' was specified as 'all' in ListServer REST API.
• Included the debug information details as an attachment along with the health RCA message in alert mail.

APM Insight issues:

• Applications were not managed/unmanaged when all their associated instances were managed/unmanaged under Bulk Configuration view.
• Chinese characters were displayed garbled in the GUI for Chinese installations.

Enterprise Edition issues:

• There were issues in adding the monitor in Managed server from Admin server when the password field contained special characters.
• In Admin server, data collection was occurring for some monitors which were added in Managed server with Microsoft SQL backend database. (Broken since v15180)
• In Admin server, there were issues in performing bulk import when HTTP port was enabled under Admin → Security Settings.

APM Plugin issues:

• Issues were seen in installing APM Plugin for both 32-bit Windows and Linux machines. (Broken since v15080)
• The Delete dashboard option under 'Actions' was not working in 'Home' tab for APM Plugin installations. (Broken since v15250)
• There were issues in adding monitor groups for APM Plugin installations. (Broken since v15400)
• In APM Plugin, delete and add user options were incorrectly shown when the number of user profiles were more than 15 under Admin → User Management → Profiles.
• There were issues in creating ticket action and to save ServiceNow integration settings when APM Plugin was accessed from OpManager GUI.

Issues fixed in 15401

• In VMware ESXi monitor, configured Guest OS and added processes/services for VMs were lost after the build was restarted. (Broken since 15250)
• In Configure Alarms, Dependent Device configuration for the Monitor's Availability was not working. (Broken since 15370)
• In Server monitors, there were issues in collecting data after the monitors were added via SSH Private key using SSH mode of monitoring. (Broken since 15350)
• There were issues in restoring the PostgreSQL backend database. (Broken since 15230)
• Unwanted characters were appended with each field labels in 'Add New Monitor' page for Japanese installations. (Broken since 15250)
• In Admin → Personalize Webclient, default language was selected as English although the build was installed in other languages. (Broken since 15180)
• In Enterprise Edition Admin server, data collection was occurring for some monitors which were added in Managed server with Microsoft SQL backend database. (Broken since 15180)
• Custom monitors that were created under the 'Servers' category went down on restart. (Broken since 15180)

Issues fixed in 15400

• In MongoDB monitor, there were issues in collecting data for all the metrics for MongoDB versions 4.x. (Broken since 15250)
• In Amazon monitor, there was an issue in fetching performance metrics for Aurora-MySQL type RDS instances.
• In Amazon monitor, there were issues in performing actions for EC2 instances in both 'Cloud Action' and monitor-level actions under 'Compute' tab.
• Access restriction page was shown while configuring threshold for Web Services monitor.
• In APM Insight, escape characters were displayed when the configuration was saved in JSON format for Custom Instrumentation.
• In APM Plugin, there were issues in adding a new custom monitor type under Admin → Custom Monitor Types. (Broken since 15050)
• The option 'Add Host also when you add a new service' was not working under Admin → Global Settings. (Broken since 15180)
• Error pop-up was shown in the Monitor Details page when the display name contained some extra whitespaces under Support → Monitor Summary → Monitor Details.
• Issues were seen in adding the Web Token when proxy was enabled in Applications Manager.
• There was an issue in adding the web token when the endpoint URL contained query params in it.
• Issues were seen in adding the Web Token although the endpoint servers returned 202 as successful response code while connecting to it.
• Updated the SAP HANA monitor's JDBC URL to avoid performance issue in SAP HANA server.

MS SQL Monitoring issues:

• Incorrect values were shown for the 'Total Space Used (MB)' metric of user tables under 'Database Details' in 'Database' tab.
• Monitor's availability was incorrectly shown as UP although the SQL host server went down.
• Data was being collected for the unmanaged SQL jobs under 'Jobs' tab.
• Duplicate queries were listed for metrics under 'Performance' tab.

Issues fixed in 15381

• In MongoDB monitor, there were issues in collecting data for all the metrics for MongoDB versions 4.x. (Broken since 15250)
• In VMware ESXi monitor, configured Guest OS and added processes/services for VMs were lost after the build was restarted. (Broken since 15250)
• In APM Plugin, there were issues in adding a new custom monitor type under Admin → Custom Monitor Types. (Broken since 15050)
• Issues were seen in unmanaging multiple monitors from Bulk Configuration View. (Broken since 15340)
• In ServiceDesk Plus (SDP) integration, there was an issue in configuring the integration when mandatory fields were set for the default request template in SDP On-Premise application (V3 APIs).
• Issues were seen in adding the Web Token when proxy was enabled in Applications Manager.
• There was an issue in adding the web token when the endpoint URL contained query params in it.
• Issues were seen in adding the Web Token although the endpoint servers returned 202 as successful response code while connecting to it.
• The option 'Add Host also when you add a new service' was not working under Admin → Global Settings. (Broken since 15180)
• Password change was not prompted for any newly-created users although the option 'Enforce password change for users during first login' was enabled under Admin → User Management → Account Policy. (Broken since 15370)
• Issues were seen in deleting/unmanaging the monitors after the license file was applied under Admin → Product License. (Broken since 15200)
• In Configure Alarms, Dependent Device configuration for the Monitor's Availability was not working. (Broken since 15370)
• In Server monitors, there were issues in collecting data after the monitors were added via SSH Private key using SSH mode of monitoring. (Broken since 15350)
• There were issues in restoring the PostgreSQL backend database. (Broken since 15230)
• In Enterprise Edition Admin server, data collection was occurring for some monitors which were added in Managed server with Microsoft SQL backend database. (Broken since 15180)
• Custom monitors that were created under the 'Servers' category went down on restart. (Broken since 15180)

Issues fixed in 15390

• There was a slowness in collecting data for all the metrics in Linux and AIX server monitors.
• In PostgreSQL monitor, there were issues in collecting data for 'Top 10 query by CPU' metrics under 'Performance' tab for PostgreSQL versions 13 and above.
• In MS SQL monitor, there were issues in collecting data for some metrics when the default polling status was set to 'Collect data in every polling' for those metrics under Admin → Performance Polling → MS SQL. (Broken since 15370)
• In Oracle Autonomous Database monitoring, there was a slowness in loading the monitor after DB credentials were updated in the 'Edit Monitor' page.
• REST API action was not working with JSON payload for CPU and memory attributes in Windows monitor.
• Issues were seen in unmanaging multiple monitors from Bulk Configuration View. (Broken since 15340)
• Incorrect time range was shown in Availability reports after the 'Timezone' option was enabled in Downtime Scheduler under 'Admin' tab.
• Issues were seen in deleting/unmanaging the monitors after the license file was applied under Admin → Product License. (Broken since 15200)
• Password change was not prompted for any newly-created users although the option 'Enforce password change for users during first login' was enabled under Admin → User Management → Account Policy. (Broken since 15370)
• In ServiceDesk Plus (SDP) integration, there was an issue in configuring the integration when mandatory fields were set for the default request template in SDP On-Premise application (V3 APIs).

Security Issues

• Stored XSS issues in "Monitor Update" module is fixed. (Reported by ranjit pahan)
• Sensitive data exposure by brute force in "Reports" module is fixed. (Reported by Rahul)

Issues fixed in 15370

• MS SQL monitors were collecting data at every poll for all the metrics irrespective of the option selected for default polling status under Admin → Performance Polling → MS SQL.
• In File monitor, there were issues in collecting data when content check was enabled. (Broken since 15200)
• In Enterprise Edition, option to delete/unmanage MS SQL monitors was not shown in Admin server.
• Email actions were not working when the SMTP password contained single or double quotes while configuring mail server.

Database Query Monitoring issues:

• There were issues in creating the monitor for MS SQL when Stored Procedure Monitoring was enabled under Admin → Performance Polling → Optimize Data Collection → Script / Database Query Monitor.
• There were issues in creating the tables in the monitor for DB2 for i database after the service pack was applied.

ADDM issues:

• There were issues in re-adding the discovered server monitors which were deleted from the discovery profile.
• Duplicate monitors were added through network discovery.
• Issues were seen in performing application discovery for Windows servers.
• Mapping was missing between applications in Servers-Applications Dependency Map view.
• Issues were seen in editing the monitors added through discovery.

Security Issues

• CSRF/XSS/Privilege-escalation issues in "Web Server/Services" and SIF module is fixed. (Reported by ranjit pahan)

Issues fixed in 15360

• In APM Insight monitor, components listed in 'Graph View' were not shown in both 'Map View' and 'Table View' under 'Service Map' tab.
• In Bulk Configuration View, there were issues in accessing the monitor resources in a new tab under 'List View'.
• In Enterprise Edition Admin server, Managed servers column was not shown for all the users other than the admin user in Inventory report.
• In APM Plugin, alerts generated from Script monitors were not escalated to OpManager server devices.

Security Issues:

• CSRF/XSS/Privilege-escalation issues in various modules are fixed. (Reported by ranjit pahan)

Issues fixed in 15350

• In IBM DB2 monitor, there were issues in collecting data for all the metrics under 'Overview' tab for DB2 v9.7.
• In APM Plugin, there were issues in updating the settings under 'Account Policy' tab in Admin → User Management.

Issues fixed in 15340

• In MS SQL monitor, there were issues in collecting data for Mirroring details under 'Database' tab.
• In MS SQL monitor, session details were not shown when the default polling status for Session details was set to 'Collect data in every hour' under Admin → Performance Polling → MS SQL.
• In Microsoft 365 monitoring, there was a slowness in collecting data for Exchange Online metrics when there was huge data in the user's environment.
• There was a slowness in generating Support Information File (SIF) through script file execution.

Security issues

• CSRF/XSS/Privilege-escalation issues in "monitor, custom-fields and dashboard" modules are fixed. (Reported by ranjit pahan)

Issues fixed in 15330

• Network devices were not listed while associating monitors to monitors group. (Broken since 15250)
• Machine learning was not working when ML-based thresholds were configured to tabular attributes in Exchange server monitor.

Database Query Monitoring issues:

• There was a slowness in collecting data for all the metrics when Stored Procedure Monitoring option was enabled under Admin → Performance Polling → Optimize Data Collection.
• There was an issue in showing data for metrics under 'Execution Time' sometimes.
• Issues were seen in displaying data for tabular metrics when the query output contained '|' symbol.
• Duplicate monitors were created when the queries contained single quotes.

Security Issues

• CSRF and Privilege escalation via "Alarm and Annotation" in Fault module is fixed. (Reported by ranjit pahan)

Issues fixed in 15320

• In SNMP monitor, an error page was shown while accessing the monitor for some users with MySQL and MS SQL backend database.
• There were issues in loading Heat Map widget properly sometimes due to connectivity issues with backend database.
• In OpManager integration, there were issues in redirecting to the OpManager device page from the Topology Map View widget.
• In Oracle DB monitor, there were issues in collecting data for all metrics under 'Alert Log' tab for Oracle 18c databases. (Broken since 14660)
• In Credential Manager, removed the options 'Database Name' for MySQL and DB2 monitors, and 'Connect using name instance' for MS SQL monitors from credential template.
• In APM Plugin, there were issues in syncing from Managed Servers to Admin server when bundled PostgreSQL DB was used for OpManager. (Broken since 15090)
• In Server monitors, alerts were not raised when the disks were removed from the servers in SNMP mode.

Enterprise Edition issues:

• There were issues in starting, stopping, or restarting cloud monitor instances from Admin server when there were multiple Managed servers.
• Disable action performed for Nginx Plus monitor's tabular attributes from Admin server were not reflected in Managed servers.
• Removed the option to delete instances from parent cloud monitors in Admin server.

Issues fixed in 15310

• In Oracle Cloud Autonomous Database monitor, there was a slowness in collecting data for all the Tablespace metrics under 'Tablespace' tab.
• In Credential Manager, SSH Private Key Passphrase was not updated properly in all associated monitors upon updating the credential details.
• In Admin → Performance Polling → Servers, the option 'Skip buffer and cache from monitoring' was enabled automatically after every server reboot although it was disabled for Linux monitors. (Broken since 15080)
• In Enterprise Edition, Email actions that were created, updated or deleted from Admin server were not synced to Managed servers. (Broken since v15270)
• PDF report generated from the Attribute History (7/30) report page was corrupted. (Broken since 15200)

Issues fixed in 15300

• In Webpage Analyzer monitor, there were issues in adding the monitor and collecting data when proxy was enabled for the monitor.
• In Tomcat monitor, the monitor status was shown as down due to an error in /manager/status page for some Tomcat versions.
• In Oracle DB monitor, incorrect data was shown for Backup Date and Backup Age under 'Backup Job Details' in 'Jobs & Backup' tab.
• In ServiceDesk Plus (SDP) integration, there was an issue in closing a ticket when the 'Log a ticket' action's ticket description contained custom tags selected from the drop down for SDP V3 APIs.
• In SDP-CMDB integration, there were issues in syncing Ping monitors to SDP.
• In Capacity Planning report, an exception was shown on clicking the value 'Yes/No' under Oversized/Undersized/Idle for FreeBSD and Novell monitors.

Issues fixed in 15225

• In Enterprise Edition Admin server, data collection was occurring for some monitors which were added in Managed server with Microsoft SQL backend database. (Broken since 15180)
• Custom monitors that were created under the 'Servers' category went down on restart. (Broken since 15180)

Issues fixed in 15223

• In Oracle DB monitor, there were issues in collecting data for all metrics under 'Alert Log' tab for Oracle 18c databases. (Broken since 14660)
• In APM Plugin, there were issues in syncing from Managed Servers to Admin server when bundled PostgreSQL DB was used for OpManager. (Broken since 15090)
• ADDM has been removed from the 'Add-on' category.

Issues fixed in 15222

• In Webpage Analyzer monitor, there were issues in adding the monitor and collecting data when proxy was enabled for the monitor.
• In Oracle DB monitor, incorrect data was shown for Backup Date and Backup Age under 'Backup Job Details' in 'Jobs & Backup' tab.
• In Enterprise Edition, there were issues in syncing from Managed servers to Admin server after both Admin and Managed servers were upgraded to a version between 15150 and 15270 for users with Linux OS and PostgreSQL backend.
• In Enterprise Edition, data collection was attempted for some monitors from Admin server. (Broken since 15180)
• In APM Insight, an error page was shown while viewing monitor details of Applications/Instances when data collection limits were set above 1000 under Admin → Performance Polling → APM Insight. (Broken since 15220)
• In APM Insight, there were issues in performing cleanup of data tables for users with MS SQL backend database versions below 2016. (Broken since 15220)
• In Admin → Performance Polling → Servers, the option 'Skip buffer and cache from monitoring' was enabled automatically after every server reboot although it was disabled for Linux monitors. (Broken since 15080)
• PDF report generated from the Attribute History (7/30) report page was corrupted. (Broken since 15200)

Issues fixed in 15290

• In Bulk Configuration view, health status was incorrectly shown as 'Unknown' for some MySQL monitors under 'List View'.
• Some of the VMware monitors went down immediately after the restart of Applications Manager.
• In Enterprise Edition Admin server, error page was shown while trying to update the changes in 'Edit Monitor' page for default MS SQL monitor.
• In Oracle DB monitor, there were issues in loading the data for 'Backup Jobs Details' table under 'Jobs & Backup' tab. (Broken since 15180)
• In JMX/SNMP Dashboard monitor, access restriction page was shown while trying to configure alarms for attributes from monitor dashboard.
• Float threshold was not applied to float attributes if the threshold contained secondary condition.
• RCA message was not shown properly for float attributes when float threshold with secondary condition was associated.
• In Configure Alarms page, value for thresholds with secondary condition was incorrectly shown for all attributes in Monitor Group and Monitor Type alarm templates.

Security Issues

• Privilege escalation via Downtime note in reports module is fixed. (Reported by Ranjit pahan)

Issues fixed in 15280

• In APM Insight, an error page was shown while viewing monitor details of Applications/Instances when data collection limits were set above 1000 under Admin → Performance Polling → APM Insight. (Broken since 15220)
• In APM Insight, there were issues in performing cleanup of data tables for users with MS SQL backend database versions below 2016. (Broken since 15220)
• In IBM DB2 monitor, there were issues in collecting data for Session Details for versions below 10.5.
• In IBM DB2 monitor, health and availability status was incorrectly shown after the database instance was stopped/unavailable.
• REST API monitor modified to add multiple monitors using the same REST API URL.
• There were issues in saving the SNMP Trap Listener when the length of the 'Text' field under 'Filter based on variable bindings' was more than 100 characters.
• PostgreSQL migration changes handled to modify the output locale to English for Non-English OS.

Issues fixed in 15270

• In Oracle Cloud Storage monitor, duplicate entries were shown for objects under 'Objects' tab.
• In vCenter Virtual Infrastructure, duplicate entries were sometimes shown for Datacenter, Cluster, Resource Pool and ESXi components under Monitor Group View.
• In Enterprise Edition, JumpCloud directory was shown as OpenLDAP under Admin → User Mangement → Domains for Managed servers when SSO was enabled in Admin server.
• In User Management, 'Fetch User' button was not shown for users in 'Import User from domain' page when the option 'Enable Subgroups view' was disabled under Admin → Server Settings → General Settings.
• Audit Logs were not shown under Admin → Audit Logs after the language was changed to Japanese in web client.
• Units were not displayed for metrics on exporting the reports to a CSV/Excel file.
• Child monitor details were not shown for monitors under Support → Monitor Summary → Monitor Details.

Issues fixed in 15260

• In Oracle DB monitor, there were issues in collecting data for Lock Statistics, Objects Approaching MAX Extents, Schedule Job Details, Schedule Job Stats due to socket read timeout error during query execution.
• Oracle DB monitor modified to sort data based on 'Free Bytes (MB)' attribute in descending order under 'Tablespaces with Least Free Bytes' in 'Overview' tab.
• Garbled characters were shown on exporting the audit logs to a PDF file for Japanese installations.
• In Configure Alarms Template, removed 'Anomaly Details' tab from Alarm Configuration page.

Issues fixed in 15221

• Renewed Push Notification Certificate for Applications Manager Mobile App.

Issues fixed in 15250

• In SNMP monitor, some custom attributes were not shown while adding MIBs due to improper handling of NullPointerException.
• Execute Program action was not working for local Windows server when the 'Program to execute' field contained "/" symbol. (Broken since 14880)
• There were issues in generating PDF reports for a few report types under Admin → Schedule Reports. (Broken since 14970)
• While viewing the 'Business View' tab of a monitor group, an error popup was shown on clicking the business view for users with 'Operator' role.
• Issues were seen in creating Support Information File (SIF). (Broken since 15230)

Issues fixed in 15240

• In Oracle DB monitor, incorrect value was shown for 'Log Apply Gap' attribute under 'Log Apply Gap Details' in 'RPO' tab.
• In Oracle DB monitor, incorrect value was shown for 'Buffer Hit Ratio' attribute under 'Overview' tab.
• In MS SQL monitor, the query used to collect data for 'Top Queries by Lowest Plan Reuse' increased the TempDB utilization to its maximum value.
• In MS SQL monitor, there were issues in generating reports and creating widgets for MS SQL AlwaysOn resource attributes.
• APM Insight monitors were not listed for all user roles in Single Sign-On (SSO) enabled Admin server.
• In APM Insight, there was an issue in saving the Custom Instrumentation settings for Java and .NET Core agents.

Security Issues

• CVE-2021-35512 : CSRF and Privilege escalation via "Advanced Analytics" in Integration module is fixed.

Issues fixed in 15230

• In VMware ESXi monitor, availability of VM goes up and down when VM is kept in maintenance mode and the option 'Show monitor status as up when under Downtime Schedule' is enabled under Admin → Downtime Scheduler → Downtime Scheduler Settings.
• Attributes were not listed in the 'Configure Alarms' page for SNMP monitors. (Broken since 14870)
• In Top N Monitors widget, vCenter cluster name was shown instead of VMware ESXi monitor name for datastore metrics.
• In Top N Monitors widget, widget column sorting was not working correctly for primary metrics in Oracle DB monitors.
• In OpManager integration, monitors were not fetched from OpManager when OpManager was in version 125393 or above.

Issues fixed in 15220

• In Oracle DB monitor, incorrect values were shown for Temporary Tablespace Utilization under 'Tablespace Details' in 'Tablespace' tab.
• In Oracle DB monitor, under 'Tablespace' tab, incorrect values were shown for 'Free Blocks' attribute under 'Tablespace Details' when the option 'Calculate Tablespace statistics along with its autoextensible size' was enabled under Admin → Performance Polling → Optimize Data Collection → Oracle → TableSpace Statistics metric. (Broken since 14811)
• There was a slowness in loading the monitor details page for Web Services monitors.
• Issues were seen in creating widgets when 'Database Status' attribute was chosen as a additional metric for MS SQL monitors.
• Memory Utilization attribute report of Linux and AIX server monitors showed 'No data available'. (Broken since 15000)
• In Windows monitor, incorrect value was shown for 'CPU Utilization' attribute for Windows Server 2008.
• Only 100 channels were shown in the dropdown while creating/editing a Slack action.
• In HelpDesk integration, tickets that were deleted/merged in the Helpdesk product caused issues in generating further tickets for the corresponding alarm entities. (Broken since 14780)
• In Monitor Group view, 'Show More monitors' link was not shown when there were more than 100 monitors associated to a monitor group. (Broken since 15130)

ServiceDesk Plus (SDP) integration issues:

• Relationships were not linked to parent CIs in SDP-CMDB integration. (Broken since 15030)
• There were issues in adding devices as 'Desktop' CI type in SDP-CMDB integration.
• Issues were seen while adding relationship for 'Database' and 'Server' type CIs in SDP.

Issues fixed in 15210

• There was an issue in Add ticket request option when template was used in ServiceDesk Plus Log a ticket action. (Broken since 14780)
• Mail Server credentials were displayed while using Mail server API.
• There was an issue in data collection for Script monitor in Linux csh shell.
• ADDM dicovery process for SNMP devices wasn't completed when the 'Discover and Add' option was selected.
• The troubleshooting link present in the Error message of details page in Apache server monitor was not rendered properly in APM Plugin builds.
• There was a problem in updating RCA of Health attribute for monitors after version 14690 in Japanese builds due to RCA format difference at the metric level.
• The Skin tab and Customize tab in Personalize webclient page under Admin page was wrongly displayed in APM Plugin builds.

Issues fixed in 15200

• Connections made from APM will now be listed as Applications Manager in Sybase ASE and Sybase SQL Anywhere monitors.
• Custom fields option for Monitor Groups in the Last 24 hours / 30 Days Availability History widget was not working properly.
• HTML links in RCA messages are configured to be included in the parent's health RCA message whenever a threshold violation occurs.
• Altered the datacollection mechanism of Apache Solr to be compatible for Solr version 7.5.

Issues fixed in 15190

• SNMP Custom attributes were not displayed properly in 'Tabular Data' widget.
• Actions other than Email were getting removed from Managed server monitors.
• 'Driver for SQL connection' option was missing in existing credential templates after upgrade. (Broken since 15150)
• Regex support for "Should not contain" value in REST API monitor has been added.
• Managed server to Admin server sync was failing for APM Plugin builds installed in Windows French OS machines.
• Alarm template configuration for VMware datastores was not being applied properly.
• When alarms were configured for datastores using the template, duplicate entires were listed in the audit logs for VMware datastores that were mapped with multiple ESX.
• Java's console logger in APM insight has been disabled as it was causing thread block issues.
• 'Filter By option' for monitors was not working in "Performance polling -> Optimise Data collection."
• 'Show Additional Metrics' field was broken when Windows Process related metrics were added in 'Tabular Data' widget.(Broken since 14860)

Issues fixed in 15180

• Performance metrics of processes were not collected in Windows Server when AppManager was installed in Spanish language.
• There was a problem in displaying certain disabled rows in the AppManager UI for Oracle and Amazon monitors.
• Modified Raw data cleanup value was not reflected in the newly created DB query monitors and custom monitors.
• Child monitors' data in the XML response of Rest APIs was improper.
• SSL connection is now enabled by default for Scheduled Reports.
• String threshold values were not displayed properly in 'Configure Alarm Page'.

Issues fixed in 15170

• Local monitors for EUM (Except RBM) were not being added when the action was performed from Admin Server.
• Service name was displayed incorrectly in Windows monitor details page. (Broken since 15060)
• There was a problem in collecting hardware metric data for WMI Windows monitor.
• Success and failure codes for Windows Scheduled Task attributes have been handled for Windows monitor.
• Process CPU % metric value was not displayed for processes in the 'Add Process' page for SNMP Linux monitors.
• Guest OS metrics data was not getting populated for some Azure VMs.
• 'View Events' link in Windows monitor's RCA message has been fixed to open in a new tab in APM plugin.
• Deleted datastore was not removed from Applications Manager UI.
• Datacenter/clusters were incorrectly listed under VCenters in the Category view.
• Cleanup query has been modified and missing tables have been included in the cleanup list to optimize Admin server performance.
• PDF reports generated via the Schedule reports option were getting corrupted if there was no data present in the reports.

Issues fixed in 15160

• There was a problem in adding KVM monitor for all Linux distributions except Ubuntu. (Broken since 14340)
• URL monitor was not getting added/updated in CN UI. (Chinese builds).
• In Oracle Monitor, Under Tablespace → Tablespace Details, SYSTEM tablespace utilization metric was showing incorrect data due to improper query handling of data collection. (Broken since 15080)
• There was an issue in data collection when the Apache's server-status API returned a lot of parameters.
• PostgreSQL password change has now been handled to affect the health of the monitor. (Broken since 13650)
• Forecast reports generated for monitors under monitor groups were empty for some attributes.

Issues fixed in 15150

• There was a problem starting the MSSQL build while switching the JDBC driver from JTDs to MS in the PPM upgraded version.
• In Script monitor, dependencies were not updated properly while switching hosts.
• In Windows server monitor, Windows Event Log rules were not syncing to the new MAS servers from admin.
• Generation of availability and health history report in excel format failed when the number of rows exceeded 32,767.
• At a glance report in CSV format of other language builds had the charset as UTF-8 instead of the default encoding.
• Agent initialization failed due to URL mismatch in APM Insight's Ruby on Rails agent.

Issues fixed in 15140

• In MS SQL monitor, incorrect values were shown for metrics under 'Database' tab for Spanish installations.
• In Windows server monitor, configured service was shown as 'down' when the service name contained whitespace at the end.
• In Windows server monitor, active processes were not shown on clicking the 'View Active Processes' option for users with Operator role. (Broken since 14570)
• In Hyper-V cluster monitoring, storage disks that went offline were content-hidden under 'Disk Space Details' but were shown under 'Disk Details' in 'Storage' tab. (Broken since 15000)
• 'Log a ticket' action was not shown under 'Actions' dropdown by default for OEM installations.
• Actions were not removed from monitors although they were removed from Alarm Template.

Issues fixed in 15130

• In Active Directory monitor, there were issues in collecting data for Port Connectivity metrics when Applications Manager was installed in older versions of Windows OS.
• Few monitor types were not shown in the Add New Monitor page for APM plugin installations. (Broken since 15050)
• In MS SQL monitor, two or more publications with the same name were not shown for Publication Details after the service pack was applied for users with PostgreSQL backend. (Broken since 15070)
• In APM Insight, there were issues in saving the Agent Configuration settings for .NET, PHP, and Node.js agents. (Broken since 15070)
• In APM Insight, an error message was shown when there was no data available for Apdex score under Applications view.
• RBM monitor modified to perform cleanup of old zipped screenshots from Applications Manager directory for Windows installations.

Security Issues

• CVE-2021-31813: Stored XSS through User Name imported from Active Directory is fixed.

Issues fixed in 15120

• In OpManager integration, there were issues in fetching and showing data for network devices for OpManager versions 12538 and above.
• In Enterprise Edition, there were issues in syncing the report data from Managed server to Admin server. (Broken since 15100)
• There was a slowness in loading the API response on executing the ListMonitorGroups REST API.
• There was an issue in updating the 'SSL is enabled' option while editing an IIS server monitor. (Broken since 14640)

Issues fixed in 15110

• On executing the GetMonitorData REST API, 'Total Memory' attribute was not present in the API response for Tomcat monitors.
• While creating an URL Sequence monitor, HAR file import failed when a URL in the HAR data contained special characters.
• OAuth provider for 'Authorization' grant type could not be added when Application Manager's hostname was in uppercase or when the server was running in SSL port '443'.

Security Issues

• Stored XSS through various fields in Webpage Analyzer, DNS and Service Monitor's is fixed. (Reported by ranjit pahan)
• Reflected XSS in Website Content Monitor is fixed. (Reported by ranjit pahan)
• CSRF through delete operation in Credential manager module is fixed. (Reported by ranjit pahan)
• CSRF through file upload operation in "Upload Files/Binaries" module is fixed. (Reported by ranjit pahan)
• Privilege escalation to add new custom field is fixed. (Reported by ranjit pahan)

Issues fixed in 15100

• In MS SQL DB monitor, there were issues in collecting data for Log Shipping Status under 'Replication' tab.
• There were issues in loading the Monitor Status Overview widget when the filter was applied to more than 2000 monitors for users with MS SQL backend database. (Broken since 15050)
• Issues were seen in creating a URL sequence monitor from Web Transaction Recorder.
• Datastore count was incorrectly shown in vCenter Monitor Group page since VMware datastores with the same UUIDs were not discovered.

Issues fixed in 15007

• There were issues in upgrading PostgreSQL database due to insufficient DB user permissions.

Issues fixed in 15006

• There were issues in starting Applications Manager after service pack upgrade when standalone PostgreSQL backend DB was used. (Broken since v14850)
• There were issues in migrating PostgreSQL database from v9 to v11 due to presence of Ctrl Z characters in the data.
• There were issues in migrating PostgreSQL database upon renaming the old DB directory folder for users with root user privileges in Linux.

Issues fixed in 15005

• There was an issue with PostgreSQL migration in Windows when it was installed in locations other than 'Program Files' directory.
• Renewed Push Notification Certificate for Applications Manager Mobile App.

Issues fixed in 15004

• APIs for Slack Integration have been updated.
• There was an issue with PgSQL migration for root users in Linux.
• There was an issue with PgSQL migration in Windows when it was installed in Program Files directory.
• At a glance report CSV of other language builds had UTF-8 charset instead of default encoding.
• RBM monitor modified to perform cleanup of old zipped screenshots from Applications Manager directory for Windows installations. (Previously fixed in 15130)
• Stored XSS Vulnerability was found in Actions page while creating EMail actions with script tag as Display name.
• Mail Server credentials are displayed while using Mail server API.
• There was a problem in updating RCA of Health attribute for monitors after version 14690 in Japanese builds due to RCA format difference at the metric level.
• You can now see all the available channels in the Create Action page for Slack Integration.

Issues fixed in 15003

• Weblogic monitor didn't show tabs other than JVM. (Broken since 14950)
• PostgreSQL migration changes handled to modify the output locale to English for Non English OS.
• Permission issues while starting the older PostgreSQL version. (Broken since 15000)
• There was slowness in loading the API response on executing the ListMonitorGroups REST API.

Issues fixed in 15090

• There was a slowness in loading the widgets in the Dashboard page for users with 'Operator' role when there were more than 2000 monitors present.
• In APM Plugin, data was not synced from Managed server to Admin server when remote PostgreSQL was configured for OpManager's central server.
• In Sun Solaris monitor, duplicate entries were shown for Disk I/O Statistics under 'Disk' tab.
• There were issues in updating the permissions for Operator role under Admin → User Management → Permissions. (Broken since 14940)
• While creating a new Windows Event Log Rule, there were issues in associating the log rule to selected monitors under Admin → Log Rules.
• APM Insight monitors were not listed under 'APM Insight' tab in Admin server.

Security Issues

• Stored XSS through Displayname via URL and File Monitor is fixed. (Reported by ranjit pahan)

Issues fixed in 15002

• On updating the password in RHV Virtual Infrastructure monitor group, the same was not updated to the host servers and their associated VMs. (Broken since 14880)
• In Hyper-V cluster monitoring, there were issues in collecting data when the domain username contained special characters "\\" instead of "\". (Broken since 15000)
• There were issues in collecting data for Health Percentage report and Health History widget of monitor groups.
• There were issues in collecting data for File/Directory and IIS monitors during script execution due to incorrect commandline arguments.
• There were issues in updating the permissions for Operator role under Admin → User Management → Permissions.
• In APM Insight, there were issues in listing all the traces under 'Traces' tab. (Broken since 14910)
• MS SQL monitoring via named instance was not working when the monitor was added through non-default named instance. (Broken since 15000)
• In MS SQL monitoring, there were issues in collecting data for Publication Details when two or more publications had the same name under 'Replications' tab.
• There was an issue in performing connection refresh to the lost MS SQL backend database connection when MSSQL JDBC driver was used. (Broken since 15000)
• Web client was not accessible due to missing servlet 'FCExporter'. (Broken since 14530)
• APM Insight monitors were not listed under 'APM Insight' tab in Admin server.

Security Issues

• A Reflected XSS through selectedGraphType in widget module is fixed. (Reported by Ezhil Krish)
• A Stored XSS through Action program name in audit log page is fixed. (Reported by Ezhil Krish)
• A Post Authenticated SQL injection in AlarmView module is fixed. (Reported by Ezhil Krish)

Issues fixed in 15080

• In Hyper-V cluster monitoring, there were issues in collecting data when the domain username contained special characters "\\" instead of "\".
• In Script monitor, false alarms were triggered although the 'Manage Table Data' option was disabled under 'Output Settings'.
• In Oracle DB monitor, there were issues in collecting data for Tablespace Details, Database Free Size, and Blocked Session metrics due to improper handling of socket read and connection timeouts during query execution.
• Garbled characters were shown in the error message after the agents were disabled/deleted under EUM → Locations for non-English installations.
• In Windows server monitor, incorrect values were shown for the threshold details of 'CPU Utilization' attribute in the History Data report.
• IIS server and Microsoft .NET monitor types were not shown in the Add New Monitor page for APM plugin installations. (Broken since 15050)
• In APM Insight, there were issues in listing all the traces under 'Traces' tab. (Broken since 14910)

Issues fixed in 15070

• There were issues in collecting data for File/Directory and IIS monitors during script execution due to incorrect commandline arguments.
• Alerts were not raised for Windows monitor when the server was restarted, although the option was enabled under Admin → Performance Polling → Servers.
• MS SQL monitoring via named instance was not working when the monitor was added through non-default named instance.
• In MS SQL monitoring, there were issues in collecting data for Publication Details when two or more publications had the same name under 'Replications' tab.
• In Apache Solr monitoring, there were some discrepancies in the data shown for hostname under 'Cores' in 'Overview' tab.
• Credentials were validated and passed upon clicking the 'Test credentials' option although incorrect password was entered while adding/modifying a DB2 monitor.

Issues fixed in 15060

• In IBM MQ monitoring, there was a slowness in collecting data when large number of IBM MQ monitors were present in the environment.
• Attribute names were not displayed for Tomcat monitors in Anomaly Dashboard page for Japanese versions.
• There were issues in loading the popup while associating monitors to a monitor group directly from the graph under 'Business View' tab.
• In APM Plugin, there was an issue in starting Applications Manager when the plugin was upgraded.
• Users were unable to add a monitor group from Admin server in APM Plugin Enterprise Edition.

Security Issues

• A Stored XSS through Action program name in audit log page is fixed. (Reported by Ezhil Krish)
• A Post Authenticated SQL injection in AlarmView module is fixed. (Reported by Ezhil Krish)

Issues fixed in 15001

• In APM Insight, there were issues in editing or updating the agent configuration settings due to an exception that occurred after updating the MS SQL driver in backend database. (Broken since 15000)
• In APM Plugin, there was an issue in starting Applications Manager when the plugin was upgraded.
• In Helpdesk integration, ticket flow was not working properly when ticket status was changed to other languages in ServiceDesk Plus.
• Helpdesk integration updated to accommodate a change in response key internally while fetching available status details from ServiceDesk Plus (SDP) v11138.

Security Issues

• Multiple Post authenticated SQL injections while create/edit of Custom Monitor Type module is fixed. (Reported by Ezhil Krish)
• A Post authenticated SQL injection in URL monitor module is fixed. (Reported by Ezhil Krish)
• A Reflected XSS and CSRF vulnerability in Execute Program Action module is fixed. (Reported by Ezhil Krish)

Issues fixed in 15050

• In IBM i monitor, there were issues in clearing alarms although there were no data available for 'Problem Severity' attribute under 'Problem' tab.
• In REST API monitor, there were issues in adding the monitor when the JSON PayLoad field contained '=' symbol for POST and PUT Form Submission Methods.

Security Issues

• Multiple Post authenticated SQL injections while create/edit of Custom Monitor Type module is fixed. (Reported by Ezhil Krish)
• A Post authenticated SQL injection in URL monitor module is fixed. (Reported by Ezhil Krish)
• A Reflected XSS and CSRF vulnerability in Execute Program Action module is fixed. (Reported by Ezhil Krish)

Issues fixed in 15040

• In URL Sequence monitor, there were issues in collecting data since there were two headers present while creating the monitor with HAR file.
• In APM Insight, there were issues in editing or updating the agent configuration settings due to an exception that occurred after updating the MS SQL driver in backend database. (Broken since 15000)

Issues fixed in 15030

• Duplicate monitors were created for WebSphere server with Network Deployment mode due to issues in establishing connections with the backend database.
• In ServiceDesk Plus (SDP) integration, monitor groups from admin server were not synced to SDP CMDB while integrating SDP and during resync process.
• Subgroup names were not displayed properly for Capacity Planning reports in 'Reports' tab.

Issues fixed in 15020

• In Enterprise Edition, alarm template with actions other than email were shown as 'null' in Managed Server after syncing from Admin server in 'Configure Alarms' page.
• In Helpdesk integration, only 100 fields were loaded in 'Ticket Action' page although there were more than 100 fields in ServiceDesk Plus (SDP).
• Helpdesk integration updated to accommodate a change in response key internally while fetching available status details from ServiceDesk Plus (SDP) v11138.

Issues fixed in 15010

• In APM Insight, stack traces were not shown for SQL traces under Traces → Trace Details.
• In APM Insight, pop-up was not opened while viewing SQL Traces under Traces → Trace Details for Applications Manager plugin.
• In MS SQL monitor, alerts related to jobs were not cleared when data collection was disabled for jobs under Admin → Performance Polling → MS SQL.

Issues fixed in 15000

• In APM Insight home page, data was collected for the last one hour although time duration was selected for the last 30 minutes from the dropdown.
• Proxy password was not updated in MSSQL backend database alone. (Broken since 14650)
• There were issues in starting Applications Manager as a Windows service due to issues in loading configuration for Machine Learning thresholds. (Broken since 14870)
• In Enterprise Edition, there were issues in logging in as Operator when there were vCenter monitor groups with multiple datastores in Admin server.
• In Enterprise Edition, Machine Learning threshold was applied instead of Monitor Type Alarm Template to monitors in Managed Server. (Broken since 14870)
• In APM Plugin, garbled characters were shown while adding monitor groups for Japanese versions under Admin → Add/Discover → Monitor Group.
• There was a slowness in loading the Monitor Group details page when large number of monitors were associated in Monitor Group.
• There was a slowness in loading the 'Associate monitor to monitor group' page when there were large number of monitors present in Applications Manager instance.
• Issues were seen in collecting data for graphs shown under 'Performance' tab of monitors in Bulk Configuration view. (Broken since 14880)
• Page navigation was not working in both 'Performance' and 'Availability' tabs for monitors in Bulk Configuration view. (Broken since 14840)
• Page navigation was not working when 'Monitors' option was selected under 'Configure By' in Admin → Performance Polling → Optimize Data Collection. (Broken since 14510)
• While configuring alarms through template, there were issues in associating actions to attributes with Warning severity in 'Configure Alarms' page. (Broken since 14870)
• There were issues in associating Alarm Template to monitors that were disassociated from Monitor Group. (Broken since 14870)
• In Credential Manager, duplicate credential names were allowed while adding/editing credential details in Chinese installations of Applications Manager.
• In Self Help Tools page, garbled characters were shown for Chinese and Japanese installations under Admin → Self Help Tools.
• Issues were seen in saving Map View while creating Topology Map View widget.
• Incorrect values were shown for Downtime, Unmanaged time, and Scheduled Maintenance time attributes when Business Hour was chosen in Availability Reports for Monitor Groups.
• In Availability History report, option to delete Downtime was not shown for Monitor Groups created in Admin server.
• Issues were seen in generating Attribute report for CPU Core and Disk Utilization attributes in server monitors.
• In SAP server monitor, incorrect data was shown for Work process count details under 'Update' tab.
• In SharePoint Online monitor, there was a slowness in loading the monitor page when large number of sites were shown under the 'Site Statistics' table in 'Sites and Applications' tab.
• In Exchange server monitor, there was a slowness in collecting data when all the metrics were enabled under Admin → Performance Polling → Optimize Data Collection.
• In JBoss monitor, there were issues in establishing connections with the JBoss server due to improper handling of connection timeout for versions 7 and above.
• While updating a URL monitor, the page was getting redirected to home page on submit. (Broken since 14880)
• In Custom and Script monitors, tables were not sorted according to their order of creation in Monitor Details and Edit Monitor pages.
• In the Real Browser Monitor (RBM), there were issues in performing playback from EUM agent in manually-installed Edge browsers.
• In ServiceDesk Plus (SDP) Integration, there was a performance issue in migrating from V1 to V3 APIs on upgrading Applications Manger to versions supporting SDP V3 APIs.

Oracle DB monitoring issues:

• In Oracle DB monitor, there was an issue in sorting the 'Free Bytes' attribute in ascending order for Tablespace details under 'Overview' and 'Tablespace' tabs.
• In Oracle DB monitor, values were incorrectly sorted on clicking the 'Percentage of Used Bytes' attribute under 'Tablespace' tab.
• Issues were seen in collecting data due to Out Of Memory issue in Oracle DB monitor.
• In Oracle DB monitor, error message was shown while collecting data for Backup Job Details and Running Backup Jobs due to improper handling of connection timeout during query execution.

Microsoft SQL monitoring issues:

• In MS SQL monitor, incorrect values were shown for 'Job Time' attribute under 'Jobs' tab.
• In MS SQL monitor, there were issues in collecting data for attributes under 'Mirroring details' in 'Database' tab.
• There was a slowness in collecting data for database metrics in MS SQL monitor.
• In MS SQL monitor, there were issues in adding the monitor after the support for Kerberos authentication was introduced.
• In MS SQL monitor, alerts were incorrectly raised for Disk Utilization percentage attributes of databases under 'Database' tab.

VMware monitoring issues:

• In VMware ESXi monitor, values were not shown for metrics under 'Datastore' tab. (Broken since 14790)
• In VMware ESXi monitor, discovered datastores were deleted and readded automatically under 'Datastore' tab. (Broken since 14790)
• In VMware ESXi monitor, data collection was occurring at irregular time intervals for metrics under 'Datastore' tab. (Broken since 14790)
• Datastore count was incorrectly shown in vCenter monitor group page.

Security Issues

• CVE-2020-35765: A Post Authenticated SQL injection vulnerability in ShowResource module of Mobile View is fixed.

Issues fixed in 14911

• There was a slowness in loading the 'Associate monitor to monitor group' page when there were large number of monitors present in Applications Manager instance.
• There were issues in associating Alarm Template to monitors that were disassociated from Monitor Group. (Broken since 14870)
• In Enterprise Edition, Machine Learning threshold was applied instead of Monitor Type Alarm Template to monitors in Managed Server. (Broken since 14870)
• There were issues in starting Applications Manager as a Windows service due to issues in loading configuration for Machine Learning thresholds. (Broken since 14870)
• While updating a URL monitor, the page was getting redirected to home page on submit. (Broken since 14880)
• In VMware ESXi monitor, values were not shown for metrics under 'Datastore' tab. (Broken since 14790)
• In VMware ESXi monitor, discovered datastores were deleted and readded automatically under 'Datastore' tab. (Broken since 14790)
• In VMware ESXi monitor, data collection was occurring at irregular time intervals for metrics under 'Datastore' tab. (Broken since 14790)

Security Issues

• A post authenticated SQL injection in MonitorGroupView feature is fixed. (Reported by Iggy Frankovic)

Issues fixed in 14910

• Blank page was shown on adding a monitor in APM Plugin. (Broken since 14770)
• In APM Insight monitor, there were issues in collecting data for Data throughput graph under 'Overview' tab. (Broken since 14890)

Security Issues

• A post authenticated SQL injection in AssociateMonitors feature is fixed. (Reported by Iggy Frankovic)

Issues fixed in 14900

• AlarmActions API returned only one annotation when 'ListAnnotations' action type was used for the given entry in JSON response.
• In Windows server monitor, duplicate entries were shown for Processor, Array, and Disk details under 'Hardware' tab when Windows was installed on HP hardware.

Issues fixed in 14844

• There was a slowness in loading the 'Associate monitor to monitor group' page when there were large number of monitors present in Applications Manager instance.
• Issues were seen in collecting data due to Out Of Memory issue in Oracle DB monitor.
• Blank page was shown on adding a monitor in APM Plugin. (Broken since 14770)
• VMware datastores were listed as separate monitors in Monitor Group View. (Broken since 14790)
• In VMware ESXi monitor, values were not shown for metrics under 'Datastore' tab. (Broken since 14790)
• In VMware ESXi monitor, discovered datastores were deleted and readded automatically under 'Datastore' tab. (Broken since 14790)
• In VMware ESXi monitor, data collection was occurring at irregular time intervals for metrics under 'Datastore' tab. (Broken since 14790)
• Proxy password was not updated in MSSQL backend database alone. (Broken since 14650)
• Infrastructure widget was not shown in Admin server for the operator and delegated admin user. (Broken since 14810)

Security Issues

• A post authenticated SQL injection in AssociateMonitors feature is fixed. (Reported by Iggy Frankovic)
• A post authenticated SQL injection in MonitorGroupView feature is fixed. (Reported by Iggy Frankovic)

Issues fixed in 14890

• In MS SQL monitor, attributes were not listed in the 'Select Attribute' dropdown for Availability Databases in 7/30 report.
• VMware datastores were listed as separate monitors in Monitor Group View. (Broken since 14790)
• Encryption Algorithm modified in Credential Manager to avoid security vulnerabilities and to support Extended ASCII characters in password.

Issues fixed in 14843

• Probe Registration Key authentication was not available while installing Managed server in APM Plugin Enterprise Edition.

Security Issues

• SQL injection in showResourceMSSQL module is fixed. (Reported by Iggy Frankovic)
• SQL injection in AlarmView module is fixed. (Reported by Whoami from VSEC Redteam)

Issues fixed in 14880

• In Topology Map View, incorrect details were shown on clicking the shortcut icons that were marked next to one another on the map.
• When a Monitor Group was renamed, the old name was still displayed for that Monitor Group in 'Current Snapshot' report.
• In Enterprise Edition, there were issues in fetching devices from OpManager when OpManager was integrated into the Admin server.
• In Server monitors, duplicate alerts were raised at every poll for 'Availability' attribute due to timestamp in RCA when the ping response obtained for that attribute was down.
• Blank page was shown when custom attributes were deleted in SNMP monitor. (Broken since 14870)

Security Issues

• CVE-2020-27733: Post Authenticated SQL Injection attack in AlarmView module is fixed.
• SQL injection in showResourceMSSQL module is fixed. (Reported by Iggy Frankovic)

Issues fixed in 14870

• In WebLogic monitor, there were issues in performing Bulk Import when Credential ID was used in CSV file.
• In Business View widget, blank page was shown on refreshing the page after enabling 'Show only Monitor Groups Status' option under View Settings → Display Properties.
• In Hyper-V monitor, there were issues in collecting data for Power, Fan, and Temperature details when Hyper-V was installed on HP hardware.
• There were issues in deleting MS SQL monitors from Applications Manager console.
• In MS SQL monitor, Subscription details were not shown for Publications under 'Replication Status' in 'Replications' tab.

Issues fixed in 14842

• There was a slowness in loading Applications Manager due to Out Of Memory issue in SSH mode of monitoring.
• In Exchange Server monitor, there were issues in configuring timeout due to some old running Powershell processes.
• In WebLogic monitor, error message popup was shown when credentials were selected using Credential Manager while adding the monitor. (Broken since 14770)
• 'Output settings' option was enabled automatically although the option was not configured while creating a new Script/Custom monitor. (Broken since 14660)
• While editing a Script monitor, incorrect host was shown under 'Choose the Host' option. (Broken since 14800)
• In Script monitor, RCA message was not shown when the server experienced connection timeout.
• In OpManager integration, OpManager connector was not working if OpManager was in version 12.5 or above.
• In Helpdesk integration, ticket flow was not working properly when ticket status was changed to other languages in ServiceDesk Plus.
• In ServiceDesk Plus OnDemand integration, there were issues in accessing the ticket details from 'Alarms' page when 'Launch Read-only ticket' option was enabled under 'Advanced Settings' in Admin → Add-on Settings → Product Settings.
• In ServiceDesk Plus and ServiceDesk Plus OnDemand integrations, there were issues in generating tickets from Applications Manager if custom fields were set in ticket action when SDP V3 APIs were used.

Issues fixed in 14860

• There were issues in installing Applications Manager with MS SQL backend due to presence of some special characters in 'Password' field.
• Users with Administration role were not able to update permissions for Operators/Users in Admin → User Management → Permissions.
• Probe Registration Key authentication was not available while installing Managed server in APM Plugin Enterprise Edition.
• Issues were seen in updating host and port details for Proxy Server under Admin → Connectivity → Proxy Server. (Broken since 14650)
• In WebLogic monitor, error message popup was shown when credentials were selected using Credential Manager while adding the monitor. (Broken since 14770)
• In File monitor, content match was working only for contents configured for the first severity status after enabling Content check for Remote Windows Server file location.
• In Script monitor, RCA message was not shown when the server experienced connection timeout.
• 'Output settings' option was enabled automatically although the option was not configured while creating a new Script/Custom monitor. (Broken since 14660)
• In Exchange Server monitor, there were issues in configuring timeout due to some old running Powershell processes.
• In ServiceDesk Plus OnDemand integration, there were issues in accessing the ticket details from 'Alarms' page when 'Launch Read-only ticket' option was enabled under 'Advanced Settings' in Admin → Add-on Settings → Product Settings.
• In ServiceDesk Plus and ServiceDesk Plus OnDemand integrations, there were issues in generating tickets from Applications Manager if custom fields were set in ticket action when SDP V3 APIs were used.
• In Helpdesk integration, ticket flow was not working properly when ticket status was changed to other languages in ServiceDesk Plus.
• In ServiceDesk Plus OnDemand integration, duplicate tickets were generated for 'Critical' or 'Warning' alarms and tickets were not closed for 'Clear' alarms due to issues in storing ticket reference in Applications Manager. (Broken since 14780)
• In OpManager integration, OpManager connector was not working if OpManager was in version 12.5 or above.
• Business Hour dropdown was content-hidden when calendar icon was clicked after choosing Custom time period in Availability and Health History report.
• While generating PDF for metrics in 'Configuration' tab under 'Global View', the page was getting redirected to home page in Enterprise Admin server.
• Error message was shown when data was not available for more than one report while executing Scheduled Reports under Admin → Schedule Reports.
• In Schedule Reports, there were issues in generating reports for 'Threshold and Action Profile CSV' Report Type under Admin → Schedule Reports.

Issues fixed in 14850

• Users were able to update the user profile with 'Super Administrator' role under Admin → User Management → Profiles. (Broken since 14690)
• Services, Processes, Database, and WebSphere MQ Queues were not shown in 'Associate Monitors to Monitor Group' page even after enabling under Admin → Server Settings → Monitor Group Settings. (Broken since 14700)
• While performing 'Execute Program' action manually, error message was shown although the action was executed successfully with Script Location as 'Remote Server' and Execution Mode as 'Telnet' or 'SSH'. (Broken since 14770)
• Issues were seen in associating a credential for a monitor from Admin → Credential Settings. (Broken since 14750)
• Error message was shown while creating a new Business Hour after enabling the 'Apply Threshold based on Business Hours' option from 'Edit Threshold Profile' page. (Broken since 14650)
• In ADDM, there were issues in triggering discovery from Admin server to Managed Servers. (Broken since 14800)

Issues fixed in 14841

• Users were able to update the user profile with 'Super Administrator' role under Admin → User Management → Profiles. (Broken since 14690)
• Issues were seen in updating host and port details for Proxy Server under Admin → Connectivity → Proxy Server. (Broken since 14650)
• In ServiceDesk Plus OnDemand integration, duplicate tickets were generated for 'Critical' or 'Warning' alarms and tickets were not closed for 'Clear' alarms due to issues in storing ticket reference in Applications Manager. (Broken since 14780)

Issues fixed in 14840

• In Oracle DB monitor, incorrect values were shown for 'Resource Used (%)' attribute under 'Resource Limit Details' table in 'Process' tab.
• In Capacity Planning report, overall status of monitors were incorrectly shown when the total number of data archived for 'CPU Utilization' attribute was higher than other attributes.
• Alerts were triggered much before the specified consecuting polling intervals due to issues in 'Polls to retry' option in Thresholds.
• In 'Alarms' tab, there were issues in clearing alarms for Managed server monitors from Admin server.
• While editing 'Performance Metric' and 'Tabular Data' widgets, attributes were not shown on choosing the 'Virtual Machine' monitor type. (Broken since 14640)

Issues fixed in 14830

• Threshold profile CSVs were incorrectly aligned in spreadsheet due to the presence of comma symbol in threshold values.
• There was a mismatch in the availability status shown in the monitor dashboard and 'Availability Downtime' report.
• In Windows server monitor, there were issues in starting/stopping/restarting services for users with 'Operator' role although permissions were granted under Admin → User Management → Permissions → Operator Permissions.
• There were issues in collecting data when WebSphere monitors were added with non-admin user credentials for WebSphere 9.
• When proxy was configured without any host exclusion, 'Alarms' tab was not accessible due to issues in setting proxy for ServiceDesk Plus connectivity even when Helpdesk was not configured.
• APM Insight instances were accessible to unauthorized users with 'Operator' role.

Issues fixed in 14820

• Graph representation of APDEX Score was not shown in APM Insight. (Broken since 14440)
• Error message was shown on enabling the 'Enable RFC' option for SAP server under Admin → Performance Polling → Optimize Data Collection.
• Incorrect units were shown for 'Recent Lock Time', 'Recent Lock Wait Time', and 'Recent Server Time' attributes under 'Enqueue' tab in SAP server monitor.
• Warning messages were shown in log files of Applications Manager due to insufficient permissions while registering MBeans for WebLogic 10 monitors.
• In Exchange server monitor, an invalid row was shown under 'AD Access Domain Controllers' table in 'Overview' tab.

Issues fixed in 14811

• In 'Performance Metric' widget, incorrect values were shown on choosing Script monitors and its associated attributes under 'Multiple Monitors' category.
• In Hyper-V monitor, there were issues in collecting data when Hyper-V was installed on HP hardware.
• When a replica was removed and re-added in SQL server, the Availability Replica and Availability Database details were not shown in MS SQL monitor.
• When a subscription was removed from MS SQL server, its associated alerts were not cleared in Applications Manager.
• There were issues in adding Database Query Monitor for Oracle. (Broken since 14790)
• JBoss monitors went down due to issues in establishing connection with JBoss server for JBoss v5. (Broken since 14620)
• In APM Insight monitor, choosing 'Select Date' under Duration and selecting an earlier date would show no data.

Issues fixed in 14800

• Added validation for Product Name while integrating OpManager and Site24x7 with Applications Manager under Admin → Add-On settings.
• Incorrect values were shown for 'Availability' attribute in 'Availability, Health and Alarms Summary' widget.
• In Downtime Summary Report mail, non-SSL port link of Applications Manager was used even after it was disabled.
• Garbled characters were shown in Scheduled Reports mail if the Schedule Name contained Chinese characters.
• While scheduling reports, there were issues in generating MS SQL Job History and Performance Reports if the monitor name contained special characters.
• Renewed Apple Push Notification Certificate for Applications Manager Mobile App.
• Alert entries were deleted in the backend database whenever Applications Manager was restarted.
• When a ticket was closed in ServiceDesk Plus MSP or ServiceDesk Plus with V3 API-supported build, alert was not cleared in Applications Manager.
• While accessing the 'Create a new ticket action' form, filtering technicians based on a group does not fetch the list of technicians using the V3 API of ServiceDesk Plus.
• When a ticket was marked with the status 'On Hold' in ServiceDesk Plus, it was not being updated with notes for the subsequent alarms from Applications Manager while using the V3 API.

Issues fixed in 14783

• Alerts were triggered much before the specified consecuting polling intervals due to issues in 'Polls to retry' option in Thresholds.
• When proxy was configured without any host exclusion, 'Alarms' tab was not accessible due to issues in setting proxy for ServiceDesk Plus connectivity even when Helpdesk was not configured.
• Users were able to update the user profile with 'Super Administrator' role under Admin → User Management → Profiles. (Broken since 14690)
• Issues were seen in updating host and port details for Proxy Server under Admin → Connectivity → Proxy Server. (Broken since 14650)
• In ServiceDesk Plus OnDemand integration, duplicate tickets were generated for 'Critical' or 'Warning' alarms and tickets were not closed for 'Clear' alarms due to issues in storing ticket reference in Applications Manager. (Broken since 14780)

Issues fixed in 14781

• When a ticket was closed in ServiceDesk Plus MSP or ServiceDesk Plus with V3 API-supported build, alert was not cleared in Applications Manager.
• While accessing the 'Create a new ticket action' form, filtering technicians based on a group does not fetch the list of technicians using the V3 API of ServiceDesk Plus.
• JBoss monitors went down due to issues in establishing connection with JBoss server for JBoss v5. (Broken since 14620)
• SSL Certificate details were overwritten when Applications Manager was upgraded for users with version 14270 or above.
• There was a slowness in loading Applications Manager due to Out Of Memory issue in SSH mode of monitoring.
• Renewed Apple Push Notification Certificate for Applications Manager Mobile App.
• Provided option to specify Timeout in Exchange Server monitor.
• Alert entries were deleted in the backend database whenever Applications Manager was restarted.

Issues fixed in 14790

• Consent message to perform Applications Manager backup was not shown while installing service pack through Console mode.
• In Admin server, health and availability status were not shown for some monitors in Bulk Configuration view.
• In Sybase monitor, the value for 'Log Used (%)' attribute was miscalculated under 'Database Details' table.
• Alerts were not synced to AlarmsOne from Admin server when option to push alerts from Managed Servers to Admin server was disabled.
• In APM Insight, 'Error count (count)' attribute has been changed to 'Errors (%)' in 'Overview' tab.

Security Issues

• CVE-2020-10816: Unauthenticated remote user is allowed to register managed servers via AAMRequestProcessor servlet is fixed.

Issues fixed in 14780

• Adaptive Thresholds were not created if the Severity fields contained decimal values for Custom Expressions.
• While editing Performance Metric widget for Windows monitor type, 'Node State' metric was not shown under 'Show Additional Metrics' for Windows server versions 2008 and above. (Broken since 14640)

Issues fixed in 14770

• Time filters were not applied for the alarms exported as PDF or Excel in 'Alarms' tab.
• List thresholds API returned no response if the instance had any threshold with secondary conditions.
• When Servicedesk Plus was integrated in Applications Manager and CI Sync was enabled, the links to CI details and Relationship map of monitors from Bulk configuration and Monitor details pages were broken due to vulnerability fixes in Servicedesk Plus.
• In Oracle DB monitor, details under 'Session' and 'Query' tabs were shown only if data collection for Lock details were enabled. (Broken since 14720)
• Oracle PDB monitors were discovered by default even when 'Discover PDB' option was not enabled. (Broken since 14750)
• SSL Certificate details were overwritten when Applications Manager was upgraded for users with version 14270 or above.
• Issues were seen in importing AD user when the Display Name contained restricted characters in Admin → User Management.
• In MS SQL monitor, there were issues in updating the MS SQL user credentials while editing the user details under 'Users' tab. (Broken since 14330)

Security Issues

• CVE-2020-15521: XSS via UnAuthenticated url '/jsp/header.jsp' is fixed.

Issues fixed in 14760

• There were issues in deleting Monitor Group Alarm Template associated to a monitor's scalar attribute when the Monitor Group of that monitor was deleted.
• Added REST API support to update the schema for custom attributes in REST API monitor.

Issues fixed in 14750

• In IBM WebSphere MQ monitor, attributes were taking a long time to load under 'Queues' and 'Channels' tabs.
• In ServiceNow integration, there were issues in setting impact for ServiceNow incidents creation for new alerts in Application Manager.
• Garbled characters were shown in pop-up on clicking the 'Update Agent Configuration' button under APM Insight Instance in Japanese installation of Applications Manager.
• Blank page was shown on clicking the Alarm details shown in 'Availability, Health and Alarm Summary' widget.
• In ADDM, Windows Server 2016 was added as 'Windows 7' during ADDM discovery.

Microsoft SQL monitoring issues:

• Query for performance counter attributes shown in 'Overview' and 'Session' tabs were taking more time to execute and returned unwanted rows.
• Database Connection details under 'Sessions' tab were shown only when data collection for Session details were enabled in Admin → Performance Polling → MS SQL tab.
• There were issues in collecting data due to improper handling of connection timeout during query execution.

Oracle DB monitoring issues:

• Jobs and User details were removed and re-added in Applications Manager's backend database due to improper handling of query timeout.
• In Oracle DB and Oracle PDB monitors, the query used to fetch Free Space details was slow and was throwing timeout alerts at times.
• There were issues in clearing user password expiry alert messages which created data collection thread blocks in the backend.
• Issues were seen in updating the password for Oracle DB monitors in Credential Manager from the Admin server.

Security Issues

• CVE-2020-15533: Unauthenticated SQL Injection in AlarmEscalation module is fixed.
• CVE-2020-15927: SQL Injection attack possible in 'resourceid' parameter of SAP module is fixed.
• CVE-2020-16267: SQL Injection attack possible in 'haid' parameter of RCA module is fixed.

Issues fixed in 14740

• In MS SQL monitor, different thresholds could not be configured for each type of backup taken for the same database in 'Backup Details' table under 'Backup/Restore' tab.
• Failure in data collection of MySQL monitor due to improper handling of connection timeout.
• There were issues in establishing connections with the MySQL server while adding MySQL monitor without enabling SSL for versions 8 and above.
• In Exchange Server and Windows Cluster monitors, there were issues in collecting data due to presence of apostrophe symbol in the 'Password' field while adding/editing the monitors.
• Included customizable option to pass on the cookies from previous URL to next URL in URL Sequence monitor.
• Issues were seen in creating ticket action if SDP MSP was integrated in Applications Manager. (Broken since 14640)
• There were issues in updating the threshold details for numeric attributes in 'Configure Alarms' page. (Broken since 14730)

Security Issues

• CVE-2020-15394: Unauthenticated Remote Code Execution via SQL injection in REST API module is fixed.

Issues fixed in 14730

• In Monitor Group view, names of monitor groups displayed incompletely for non-English characters in Enterprise Edition admin server.
• In MS SQL DB monitor, alarm could not be configured for value of CHECKDB command as 'DBCC Never Run' under 'Database' tab.
• Length of 'Search Filter' parameter increased in 'Import Users from Active Directory/OpenLDAP' page after creating new user in Admin → User Management.
• In WebSphere monitor, JDBC defined in cell scope was not listed under 'JDBC' tab for WebSphere version 9 in network deployment mode.
• Issues were seen while adding OpenShift monitors if the Username and Password fields contained special characters.

Security Issues

• CSRF to SQL Injection leading to RCE via url '/RestAPIAction.do' is fixed. (Reported by Lukasz Bialek)
• CVE-2020-14008: Authenticated Remote Code Execution as admin via Java class reflection in WeblogicReference is fixed by restricting certain file uploads.

Issues fixed in 14720

• In String threshold, length of string value field increased from 100 to 1000 characters.
• In 'Admin → Schedule Reports → New Schedule Reports' page, there were issues in configuring Recurring Details for Weekly and Monthly time settings in IE browsers.
• In MongoDB monitor, there were issues in collecting data as a whole due to exceptions occurred in 'Network Traffic sent' and 'Network Traffic received' attributes.
• When SDP v.11117 is integrated in Applications Manager, the values in 'Create a new ticket' action form do not get populated.
• Included customizable option to show database details as in Applications Manager builds before 13910 under 'Database' tab in MS SQL monitor.

Issues fixed in 14710

• In Citrix Hypervisor monitor, data representation converted from bytes/second to kilobytes/second for 'Data Transmit' and 'Data Received' attributes under 'Network' tab.
• KVM monitor enhanced to show 'Disk Block Details' under 'Disk' tab for virtual machines.
• Blank page was shown while trying to add a Web Server monitor with a valid hostname and an invalid port.
• Issues were seen in updating and deleting SLA details under Admin → Manage SLA. (Broken since 14680)
• In String threshold, 'equal to' conditions were not applied if the monitored value contained whitespaces at the start/end of the string.

Issues fixed in 14700

• In Tomcat monitor, JDBC details were not shown if Spring-managed pool was used in the Tomcat server.

Issues fixed in 14685

• Issues were seen in importing AD user when the Display Name contained restricted characters in Admin → User Management.

Security Issues

• CVE-2020-15521: XSS via UnAuthenticated url '/jsp/header.jsp' is fixed.

Issues fixed in 14684

• Issues were seen in creating ticket action if SDP MSP was integrated in Applications Manager. (Broken since 14640)
• Issues were seen in updating the password for Oracle DB monitors in Credential Manager from the Admin server.
• Garbled characters were shown in pop-up on clicking the 'Update Agent Configuration' button under APM Insight Instance in Japanese installation of Applications Manager.
• In Exchange Server and Windows Cluster monitors, there were issues in collecting data due to presence of apostrophe symbol in the 'Password' field while adding/editing the monitors.
• SSL Certificate details were overwritten when Applications Manager was upgraded for users with version 14270 or above.

Security Issues

• CVE-2020-14008: Authenticated Remote Code Execution as admin via Java class reflection in WeblogicReference is fixed by restricting certain file uploads.
• CSRF to SQL Injection leading to RCE via url '/RestAPIAction.do' is fixed. (Reported by Lukasz Bialek)
• CVE-2020-15394: Unauthenticated Remote Code Execution via SQL injection in REST API module is fixed.
• CVE-2020-15533: Unauthenticated SQL Injection in AlarmEscalation module is fixed.
• CVE-2020-15927: SQL Injection attack possible in 'resourceid' parameter of SAP module is fixed.
• CVE-2020-16267: SQL Injection attack possible in 'haid' parameter of RCA module is fixed.

Issues fixed in 14683

• Attributes were not listed properly for Cloud monitors in Admin → Enable Reports page. (Broken since 14490)
• Issues were seen while adding OpenShift monitors if the Username and Password fields contained special characters.
• Maximum number of connections per device through SSH/Telnet increased up to 20 connections per time from Applications Manager server to remote servers.
• Issues were seen in updating and deleting SLA details under Admin → Manage SLA. (Broken since 14680)

Issues fixed in 14690

• Issues were seen while updating the username and password credentials of LDAP monitors from Bulk Configuration View.
• Attributes were not listed properly for Cloud monitors in Admin → Enable Reports page. (Broken since 14490)

Issues fixed in 14682

Security Issues

• CVE-2020-9484: Disabled Tomcat session persistence across restart and possible deserialization vulnerability.

Issues fixed in 14681

• Duplicate display names were shown for APM Insight monitor instances running in the same host for different applications.
• There were issues in collecting data for Log Shipping details under 'Replications' tab in MS SQL monitor.
• In MySQL monitor, there were issues in collecting data for metrics under 'Performance' and 'Session' tabs for MariaDB servers.
• User Management modified to restrict special characters in 'Username' field.
• In Windows monitor, Service Name was not updated after modifying in Service Template under Admin → Discovery & Data Collection → Template Library.
• In Linux monitor, option to Test Credential was not working after editing the monitor details added via SSH key.

Security Issues

• Option introduced to end active session(s) on user role update. (Reported by ManhTD)

Issues fixed in 14670

• Option to update IP/Hostname added in Sybase monitor page.
• Issues were seen while updating IP for .NET monitors in Bulk Configuration View.
• In MS SQL monitor, there were issues in performing Bulk Import of monitors for MS SQL servers.

Issues fixed in 14660

• Units representation changed from kbps to KBps for kilobytes per second in VMware, RHV, and Citrix Hypervisor monitors.
• Monitors deleted in Managed servers were not removed in Admin server.
• Length of 'Trap Listener Name' field increased from 40 to 255 characters in SNMP Trap Listener.
• In RBM monitor, option to View Screenshot History was not working from Admin server.
• In Server monitor, associated monitor group details were not shown for both Admin and Managed servers.
• In SNMP Trap Listener, 'Trap OID' field did not allow '.*' character for SNMP Trap version v2c. (Broken since 14130)

Security Issues

• Unauthenticated SQL Injection in /servlet/DowntimeScheduler via parameter 'TASKNAME' is fixed. (Reported by Costin Ivancea)
• Executable File upload via /FileUploadServlet/ is restricted to .p12 files. (Reported by Wei)
• Path Traversal on the parameter TileName in request /showTile.do is fixed. (Reported by ManhTD)
• XSS through /j_security_check request in parameter j_username is fixed. (Reported by ManhTD)
• Added restriction to submit only WhiteListed Commands for Ping monitor under Admin → Performance Polling → Ping Command. (Reported by Wei)
• CVE-2017-11738: Unauthenticated SQL Injection in '/auditLogAction.do' via parameter 'haid' is fixed.

Issues fixed in 14630

• Error page was shown after uploading the MIB files in SNMP monitor.
• In Capacity Planning Reports page, server state was wrongly mentioned as 'Oversized' for Idle Servers.
• Number of monitors shown in the 'Availability History' widget increased from 25 to 10000.
• Warning message to change the password is shown now when admin user has logged in with default credentials.

Issues fixed in 14620

• Issues were seen while re-adding the deleted Windows server monitors in Applications Manager.
• In Windows server monitor, there were issues in collecting data for CPU Core Utilization and Disk Utilization after re-adding the deleted monitors.
• Bar graph was not shown in 'Performance Metric' widget when 'Show graph for additional metrics' option was enabled.
• Issues were seen in establishing SSL connection for Domain Configurations in User Management.
• PostgreSQL monitor enhanced to show number of connections per database under 'Database details' in 'Database' tab.
• Length of String and Number attributes increased from 100 to 10000 in Custom new monitor type.
• In MS SQL monitor, the queries used to collect data for 'Performance' tab increased the TempDB utilization to its maximum value.
• In Reports, start day has been changed from Sunday to Monday while viewing last week period data.

Security Issues

• CVE-2019-19800: Remote unauthenticated user able to disclose file names under /working directory via FailOverHelperServlet is fixed.
• File uploaded via FileUploadServlet has traceable name and can be an executable file is fixed. (Reported by Wei)

Issues fixed in 14610

• Option to exclude the 'faultstring' error check added in Web Services (SOAP) monitor.
• In APM Insight, unwanted pop-ups were showing up on clicking the 'Errors' subtab under 'Transactions' tab when the transaction is of both background and error type.
• There were issues in collecting data for Summary, Garbage Collector and Thread information under 'JVM' tab of APM Insight monitor.

Issues fixed in 14600

• SNMP v3 monitor health status showed as 'down' after the monitored server was restarted.
• In SNMP Trap Listener, alarms were not generated for the traps that contain Enum integers.

Security Issues

• CVE-2019-19799: Unauthenticated disclosure of license-related information via servlet WieldFeedServlet is fixed.

Issues fixed in 14534

• There were issues in installing Applications Manager Plugin v14533 for OpManager v12.4.196.

Issues fixed in 14533

• Warning message to change the password is shown now when admin user has logged in with default credentials.
• Added restriction to submit only WhiteListed Commands for Ping monitor under Admin → Performance Polling → Ping Command.

Security Issues

• CVE-2019-19800: Remote unauthenticated user able to disclose file names under /working directory via FailOverHelperServlet is fixed.
• File uploaded via FileUploadServlet has traceable name and can be an executable file is fixed. (Reported by Wei)

Issues fixed in 14532

• In APM Insight, unwanted pop-ups were showing up on clicking the 'Errors' subtab under 'Transactions' tab when the transaction is of both background and error type.
• There were issues in collecting data for Summary, Garbage Collector and Thread information under 'JVM' tab of APM Insight monitor.

Security Issues

• CVE-2019-19799: Unauthenticated disclosure of license-related information via servlet WieldFeedServlet is fixed.

Issues fixed in 14590

• MS SQL monitor was not getting deleted from the Applications Manager console.
• In MS SQL monitor, there were issues in collecting data for the availability databases if more than one secondary replica was configured under an AlwaysOn Availability Group.
• There were issues in starting up Applications Manager Plugin with PostgreSQL backend. (Broken since 14540)

Security Issues

• SQL Injection leading to privilege escalation in /showCustomReports.do via parameter 'report' is fixed. (Reported by Anh Vu from Viettel Cyber Security)

Issues fixed in 14580

• Issues were seen while updating the value for 'Urgency' field in ServiceNow integration.
• In MS SQL monitor, RCA message for skipped jobs were not cleared even after disabling the 'Alert Skipped Jobs' option under Admin → Performance Polling.
• Incorrect value was displayed for 'Today's Uptime' in RBM monitor page.
• There was an issue in collecting data for 'Response Time' attribute of server monitor, when Applications Manager is installed as Japanese in Japanese OS.
• Root Cause Analysis enhanced to limit the length of RCA messages upto 10000 characters.

Issues fixed in 14570

• IBM i (AS400) monitor enhanced to sort health status based on severity for monitored data queues.
• While adding a REST API monitor, Pay Load field containing more than 100 characters were redirected to Applications Manager homepage on submission.
• Windows 2016 and 2019 servers were added as Windows 7 servers during ADDM discovery.
• During ADDM vCenter discovery, password field containing special characters were not accepted.
• In the History data page, lengthy attribute names were not shown in the 'Select attribute' dropdown.

Issues fixed in 14560

Security Issues

• SQL Injection RCE vulnerability via MyPage.do with parameter template_resid is fixed. (Reported by Hamzah Alahmed from Saudi Information Technology Company (SITE))

Issues fixed in 14531

• In APM Insight home page, options to show and copy the license key were not working in Mozilla Firefox and Microsoft Edge browsers.
• In Applications Manager Plugin, graphs were not being displayed in addition to frequent pop-ups in APM Insight.
• Application Details page of APM Insight faced more page load latency.

Security Issues

• SQL Injections via /swMgmt.do with parameter 'checkbox' is fixed. (Reported by Jason Corma from Taiwan)
• SQL Injection RCE vulnerability via /showReports.do with parameter 'resourceid' is fixed. (Reported by Anh Vu)

Issues fixed in 14550

• While viewing QoS Worldwide view tab, a blank popup was being shown on clicking over the widget.
• In Amazon DynamoDB, data collection was happening for 'Streams' and 'Minimum Maximum Statistics' metrics at every poll irrespective of polling status configured in Admin → Performance Polling.
• In Configure Mail Server, TLS version 1.2 authentication was not supported.
• In Applications Manager Plugin, 'Username' field was accepting only for case-sensitive values.
• In Support tab, option to create and upload Support Information File (SIF) was not working.
• Support Information File (SIF) size capacity increased from 500MB to 2GB.
• Issues were seen while creating shortcuts with Japanese characters in Topology Map View.
• In SNMP Trap Listener, incoming trap with same OID as that of the configured trap listener was not being matched when the incoming trap's OID does not precede with '.' symbol.
• In MS SQL monitor, the value for 'Expiration Status' metric was always showing as 'Expired' while displaying Subscription details of Publications under Replications tab.
• IBM i (AS400) monitor enhanced to sort health status based on severity for monitored jobs and subsystems.
• In APM Insight home page, options to show and copy the license key were not working in Mozilla Firefox and Microsoft Edge browsers.
• In Applications Manager Plugin, graphs were not being displayed in addition to frequent pop-ups in APM Insight.
• Application Details page of APM Insight faced more page load latency.
• When Self-Monitoring is enabled, false alerts related to polling delay were seen, for monitors whose poll interval was changed from the default value.

Security Issues

• SQL Injections via /swMgmt.do with parameter 'checkbox' is fixed. (Reported by Jason Corma from Taiwan)
• SQL Injection RCE vulnerability via /showReports.do with parameter 'resourceid' is fixed. (Reported by Anh Vu)

Issues fixed in 14530

• In Websphere monitoring, duplication of monitors were taking place for network deployment mode. (Broken since 14430)
• Data collection was not happening for Websphere monitors with base deployment mode. (Broken since 14430)

Issues fixed in 14520

• Issue found in listing file names under /working directory through FailoverHelperServlet.

Issues fixed in 14510

• In Database Query monitor, Windows authentication for MSSQL database was not working. (Broken since 14130)

Issues fixed in 14500

• Configure Alarm Templates were not being applied for third-level tabular metrics.
• In IBM MQ Broker, Message flows were not monitored for Applications, Library, and Rest APIs.
• In ADDM Edit discovery, Device type were not being discovered for already added unknown monitors.

Issues fixed in 14490

• In Schedule Reports, "Selecting number of monitors" option was included for capacity planning.
• In Availability Report, the value for attribute "Mean Time Between Failure (MTBF)" was being miscalculated.
• While creating a URL monitor from admin server the page was getting redirected to home page on submit after selecting the specific managed server. (Broken since 14460)
• Edit request in Windows performance counters monitor was getting redirected to home page. (Broken since 14460)
• Certificate file upload from admin to managed server failed when URL monitor was created from admin server.
• In Support tab, issues were seen in triggering heap dumps for JVM.
• Issues were seen in creating an Oracle Cloud monitor when tags were configured in the compartments of tenancy.
• In Web Applications Group page, other tabs were not working after navigating from Business view tab.
• In MySQL monitor, data was not being shown in Replication and Configuration tabs for users not having Superuser privilege.

Issues fixed in 14480

• While creating Microsoft Dynamics AX monitor, issues were seen while fetching both WMI and AX credentials using Credential Manager.
• In Attribute History Report, value for "95th percentile" was included in PDF report.

Issues fixed in 14470

• In MS SQL monitor, incorrect value was being displayed under Clusters tab when the user was logged in as Operator in Applications Manager.
• In JBoss monitor, Product Name and version attributes were found to be wrong/empty for some versions of JBoss.
• While integrating AlarmsOne in APM Plugin, the page was getting redirected to home page on submit.

Issues fixed in 14460

• Error popup was being shown on selecting the Display Properties option under Business View tab available in home page.
• In Kubernetes monitor, no data were being shown for some attributes in the Persistent Volumes table.
• In Rest API Action, response mail content was found to be improper for the configured mail ID.
• Script monitor creation failed when Local Command mode was chosen in Linux build.
• In the Real Browser Monitor (RBM), if the recorded script contained DOM value as the primary identifier, data collection was not happening.
• In the Real Browser Monitor (RBM), Test Playback was failing when the password value was content-hidden in the playback script.
• In HAProxy monitor, the values were being miscalculated for a few attributes.

Issues fixed in 14450

• In MySQL monitor, alarm generated for "Open Connections" was not escalated to the monitor's health.
• While adding AD monitor, there were issues in fetching credentials using Credential Manager.
• Installation issues were seen while configuring MS SQL DB server in Applications Manager if the SQL server password field contained "&" symbol.
• APM Plugin was starting the User sync process even before taking the Auth token from OPM DB.

Issues fixed in 14440

• In Azure Virtual Machine, no data was being loaded for Azure diagnostic agent's performance metrics.
• In About settings tab, option to perform Easy Upgrade was not working. (Broken since 13510)

Issues fixed in 14430

• Availability of the server discovered in WebSphere ND monitor is down if the name contains space in it.
• Issue in retrieving Website statistics and Application Pools of IIS Server when the same host was added as different monitor type.

Security Issues

• CVE-2019-19475: Archive mode configuration of bundled PostgreSQL database is set to 'off' by default.

Issues fixed in 14401

• While configuring alarm template for Monitor Type in the admin server, the health and availability of the monitors were not getting synced to the Managed Servers.
• 'Show All Causes' icon in the RCA of the monitor was not working.
• Monitor displayname was being shown as "null" in the Availability Report Page. (Broken since 14360)
• While adding Oracle DB monitor, the username field containing "#" symbol was not being accepted by Oracle DB.

Issues fixed in 14420

• While configuring alarm template for Monitor Type in the admin server, the health and availability of the monitors were not getting synced to the Managed Servers.
• Error page was being shown on clicking the "RHEV Virtual Infrastructure" option under "Monitor Group" in the Chinese language build.
• Monitor displayname was being shown as "null" in the Availability Report Page. (Broken since 14360)
• Linux command for Inode monitoring was not displaying a portable output.
• Under Downtime Scheduler, the local time shown in the start time and end time of the custom schedule was removed as it was found to be confusing with the actual time zone configured.
• While adding Oracle DB monitor, the username field containing "#" symbol was not being accepted by Oracle DB.

Issues fixed in 14410

• A compromised user account of "Authenticated Users" group could modify PostgreSQL configuration by executing an arbitrary command to escalate privileges.

Issues fixed in 14400

• Ticket details for Service Now integration were not updated properly. (Broken since 13990.)
• In SNMP Trap Listener, junk characters were shown in trap message.
• In Admin → Performance polling → MS SQL, "All" option under Monitors dropdown was not working if monitor group was selected at the time of adding monitor.
• There was an issue in dynamic table creation when MySQL was migrated to PGSQL database.
• Auto-refresh of dashboard was not implemented after the set time.

Issues fixed in 14361

• Test playback from Edit Playback Script window of RBM was not working. (Broken since 14330).
• Network devices were getting deleted and added during every subsequent update of Devices and Alarms from External Connectors(Broken since AppManager version 14330).
• In APM Plugin, junk characters were sent as alert to OPM instead of proper Japanese characters. (Broken since 14310).
• Ticket details for Service now integration were not updated properly. (Broken since 13990.)
• Monitor group's description field rendered empty content if it contained special characters.
• There was an issue in getting downtime data using REST API 'type' parameter for period values 3,2 and 11 when a new monitor was added.
• Replication data was not properly cleared when a MySQL DB monitor was deleted.
• Business Service group could not be created.

Issues fixed in 14390

• Monitor group's description field rendered empty content if it contained special characters.
• Ping monitor data for Japanese servers wasn't shown.
• Monitor group names with chinese words looked garbled.
• When the list of users along with user group was imported, if the display name had a comma in it, users weren't imported properly.
• Recent Alarms widget not shown in the dashboard.

Issues fixed in 14380

• Network devices were getting deleted and added during every subsequent update of Devices and Alarms from External Connectors(Broken since AppManager version 14330).
• There was an issue in getting downtime data using REST API 'type' parameter for period values 3,2 and 11 when a new monitor was added.
• In APM Plugin, junk characters were sent as alert to OPM instead of proper Japanese characters. (Broken since 14310).

Issues fixed in 14370

• Test playback from Edit Playback Script window of RBM was not working. (Broken since v14330).
• Text value in widgets appeared small on big screen.
• Support to configure custom status URL for HAProxy monitor was added.
• Apple push notification certificate was renewed.

Security Issues

• SQL injection via serverID parameter in /servlet/mas_servercmd is fixed (ZVE-2019-6227).

Issues fixed in 14332

• Apple push notification certificate was renewed.
• The "Retry immediately if error occurs" option in URL monitor was not working.

Issues fixed in 14360

• On enabling self monitor option in Admin Server, false alert was sent for sync delay in managed server for which sync was disabled manually.
• When Applications Manager was installed in a chinese machine, availability of servers which were down weren't shown as such.
• The "Retry immediately if error occurs" option in URL monitor was not working.

Issues fixed in 14350

• Datacollection mechanism of PHP monitor was altered to support higher level of ciphers.
• There was an error in collecting Transactions/Min attribute data, when "Collect SQL Database metrics once in an hour" is enabled from Admin → Performance polling → MS SQL.

Issues fixed in 14331

• In Kubernetes monitor, performance polling key was not updated in managed server when its value was changed from admin server (Broken since 14180).
• In Website Content Monior, Script Threshold(%) and Text Threshold(%) could not be set to 0 (Broken since 14130).
• Support for IPv6 in URL Monitor added.
• In Openstack monitor, there was an issue with fetching the project-scoped Token-ID information via API.
• When backup/server.xml connector ports contained hardcored values instead of WEBSERVER_PORT and SSL_PORT values, users were unable to access APM after applying PPM.

Issues fixed in 14340

• Support for IPv6 in URL Monitor added.
• Attribute report for HAProxy monitor showed "no data available".
• When a PDF report was generated for alarms, the time format showed in the report differed from UI.
• Attribute report for the EUM monitors associated to monitor group showed "no data available".
• In Openstack monitor, there was an issue in fetching the project-scoped Token-ID information via API.
• In EUM monitors, data collection occured every 5 minutes irrespective of polling interval.
• In Kubernetes monitor, performance polling key was not updated in managed server when its value was changed from admin server (Broken since 14180).
• Available devices was not shown when 'All' Category was selected in Topology Map View.
• In Website Content Monior, Script Threshold(%) and Text Threshold(%) could not be set to 0 (Broken since 14130).
• Virtual Machines with same resourcename in various Hyper-V servers were not discovered.

Issues fixed in 14330

• In JBoss EAP 6, JDBC details were not shown when "waitCount" attribute was absent.
• Tomcat (other languages) : Configuration tab values were empty.
• Web User Experience monitor was not showing data under the Browser and Device details tab.
• SSL Support was not working for Postgres Monitor.
• Link to add other monitors inside Server monitor details page was broken (Issue since 14130).
• In VMware ESX, Xen Server and Nutanix monitors, "VM Discovery → Discover VMs but do not monitor metrics" option wasn't working.
• There was an issue while configuring Website Statistics & Application Pools for IIS server (Broken since 14280).

Issues fixed in 14310

• All monitors, even those which were not associated to 'operator' user, were displayed in the inventory report for 'operator' type users.
• In Oracle DB -> Tablespace tab, 'allocated bytes' shown for tablespaces of type "TEMPORARY" was incorrect when it was associated with multiple datafiles.
• In Oracle DB monitor, there was an issue in the data collection of TableSpace details for the monitors in standby mode with read access.

Issues fixed in 14300

• If the RCA Message contained more than one link, only one was shown in the email content.
• If the business hour was applied and .pdf file of Availability percentage report was generated for multiple monitors, it showed incorrect overall availability.
• In SNMP mode, disk utilization was wrongly calculated if one of the OID was missing in between the sequence.
• There was an issue while adding Query monitor with special characters using AddMonitor Rest API.

Security Issues

• CVE-2019-15104, CVE-2019-15105: NewThresholdConfiguration.jsp allowed an user to execute malicious SQL statements through "resourceId" parameter.

Issues fixed in 14190

• Uptime scale in Availability history widget in the Enterprise Edition Admin server was not properly aligned when more than 15 rows were present.
• For SDP-OD, on-hold tickets were being re-opened when a ticket was updated, instead of adding the update as notes.

Issues fixed in 14180

• Availability trend and outage comparison report for “All Monitor Group” displayed no data when the time period was changed. 
• In MS SharePoint Server monitor, scalar attributes were being added as SharePoint Services.

Security Issues

• CSRF vulnerability: An attacker could craft an URL in such a way that when an admin user is made to access this a new admin account will be created without his consent hence compromising security.
• Session Termination: When an account user updates his password in one of his browsers, we now terminate all the existing sessions except current session of that account.
• SQL Injection vulnerability: While adding a Database Query Monitor, users could bypass the select query check and do DML/DDL operations.
• Sensitive Data Exposure: Monitor Password Disclosure issue in the Edit screen page for monitors is removed
• Remote Code Execution vulnerability in Execute Program Action via the “View Actions” functionality.

Issues fixed in 14170

• The option to change the logo under "Report Settings" was not working for the dashboard reports sent via schedule reports.
• We have encrypted the keystorepass and truststorepass in backup/server.xml and server.xml files.
• In RabbitMq monitoring, we’ve added a new attribute “State for Queues”.
• Users could not add a monitor using the Add attributes link inside JMX/SNMP Dashboard monitor. (Broken since Build 14130).

Issues fixed in 14160

• Category and sub-category fields were not being assigned in SDP-MSP if special XML character & was present.

Issues fixed in 14150

• When only subgroups are associated in an operator account, users were getting the response “Invalid API request” in the mobile app.
• Users received inconsistent results when using the GetDowntimeDetails Rest API with the showFullDetails parameter for Daylight Saving Time.
• Removed the Custom Attributes Tab in the monitor and added all memory pools details under JVM Memory for Jboss versions 7.x and above.

Security Issues

• CVE-2019-11448: We now prevent unauthenticated access and SQL injection/Remote Code Execution to Popup_SLA.jsp.
• We also prevent SQL injection/Remote Code Execution to the SyncMonitorInAdminMG servlet.
• CVE-2019-11469: We've handled unauthenticated access and SQL injection vulnerability in the "resourceid" parameter that runs on /jsp/FaultTemplateOptions.jsp.

Issues fixed in 14140

• In Server Monitoring SNMP v3, the process list is displayed as down and doesn't become up unless polled manually.
• Users could not disable user action for MsSQL JOBs. To fix this issue, we have provided an option under User Management -> Persmissions Tab to "Allow Admin users to do MSSQL Job management actions".

Issues fixed in 14130

• Android push notification is done via Firebase Cloud Messaging instead of Google Cloud Messaging.
• In Server Monitoring, CPU core data was not being collected in SNMP mode.
• When generating Dashboard Scheduled reports, widgets are now printed in the proper order (as shown in the Applications Manager client) and page break is added after each widget.
• Alerts were not being removed from the Admin Server if the Trap Listener is deleted from Managed Server.
• When a new user was created with a profile photo, logging in to the new account would redirect to an error page (since build 14080).
• The GetDowntimeDetails Rest API was returning data for only 28 days irrespective of the month for the period=11(Last month) (since build 14080).
• When editing threshold configuration in the Admin Server, data was not being synched with the Managed server (since build 14100).
• Restricted the unauthorized access for Edit Monitor, Update Monitor and View Monitor.
• Capacity planning reports sent as scheduled reports could not be opened properly as the file extension was missing at report creation (since build 13840).

Issues fixed in 14120

• Negative values were being displayed for the attributes Used Bytes / Free Bytes when usage exceeded 100% in Oracle Temp tablespaces.
• Metaspace memory details (for Java 8) added for Jboss Version 7 and above.

Issues fixed in 14110

• In JBoss server monitoring, JMS details were not being displayed for ActiveMQ.

Issues fixed in 14100

• The Buffer Hit Ratio Attribute report of Oracle Database Monitor in Schedule reports showed "No Data Available".
• In Execute Program Action, the Remote Server Telnet/SSH Port was hardcoded. When a user edited the action, the default port was being displayed instead of the newly configured port.
• When using the GetDowntimeDetails Rest API with the seclected period as "last month", downtime details were being collected for 30 days instead of the number of days in the respective month.
• Users could not configure Monitor Group type alarm templates for tabular attributes when multiple Monitor Group templates existed for the same attribute.
• In Trap Receiver, if a SNMP V3 trap was received, any action configured for other trap listeners were also being executed.
• Service Monitor triggered numerous Monitor Down email alerts every day at different time intervals without RCA change.
• In Linux builds, when users selected the Microsoft Skype for Business monitor from the Create New Monitor page, they were not being redirecting to the appropriate page.
• In the Trap Listener, the trap received details were not being updated (if previous and current severity is clear), but corrective actions were being executed.