#28726 Tenable Vulnerability Management Scan Results: Monthly Agent Scan (Internal)
Resolved
Created Aug 7, 2024, 8:05 PM
Resolved Feb 13, 2025, 8:54 PM
System (internal)
Aug 7, 2024, 8:05 PM
Check-in (internal)
Aug 7, 2024, 8:05 PM
Monthly Agent Scan (Internal) [embedded image] Monthly Agent Scan (Internal) Wed, 07 Aug 2024 20:04:44 UTC Tenable Vulnerability Management completed the scan Monthly Agent Scan (Internal). Please click [here](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset) to view and edit the scan results. Report Summary Plugins: Top 5 Severity Plugin Id Name Critical [202185](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-plugin/vulnerability-details/202185/assets-affected?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) Security Updates for Microsoft Office Products C2R (July 2024) Critical [205016](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-plugin/vulnerability-details/205016/assets-affected?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) Google Chrome < 127.0.6533.99 Multiple Vulnerabilities Critical [97085](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-plugin/vulnerability-details/97085/assets-affected?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) Microsoft Office Unsupported Channel Version Detection Critical [179635](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-plugin/vulnerability-details/179635/assets-affected?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) Microsoft Teams < 1.6.0.18681 RCE Critical [190541](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-plugin/vulnerability-details/190541/assets-affected?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) Security Updates for Microsoft Office Products C2R (February 2024) Assets: Top 5 Asset Critical High Medium Low Info Total [bank](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset/asset-details/b990c65d-5664-4938-8f6d-26eb5a7f4db3/vulns?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) 8 0 0 0 46 54 [bom-4r8nk93](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset/asset-details/02f69e7a-ee4f-4637-b322-8881e9536ec0/vulns?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) 7 7 2 1 57 74 [bom-gw4v5s3](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset/asset-details/3d59a204-78ff-4d24-82cd-c4e416da948a/vulns?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) 7 7 2 0 52 68 [bom-84l19d3](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset/asset-details/063c4ed9-172c-4b7e-b0f1-d3b808ab3148/vulns?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) 6 8 3 1 62 80 [bom-15l19d3](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset/asset-details/d33487c7-df6d-4cf4-a176-7ddf0ac1c0c2/vulns?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) 6 7 3 0 56 72 Suggested Remediations (TOP 10) Taking the following actions across 13 assets would resolve 35% of the vulnerabilities on the network: Action to take Vulns Hosts Security Updates for Microsoft Office Products C2R (July 2024): For Office 365, Office 2016 C2R, or Office 2019, ensure automatic updates are enabled or open any office app and manually perform an update. 89 10 Google Chrome < 127.0.6533.99 Multiple Vulnerabilities: Upgrade to Google Chrome version 127.0.6533.99 or later. 60 10 Adobe Reader < 20.005.30635 / 24.002.20759 Multiple Vulnerabilities (APSB24-29): Upgrade to Adobe Reader version 20.005.30635 / 24.002.20759 or later. 46 1 Microsoft Teams < 1.6.0.18681 RCE: Upgrade to Microsoft Teams 1.6.0.18681 or later. 30 10 Adobe Acrobat < 20.005.30635 / 24.002.20759 Multiple Vulnerabilities (APSB24-29): Upgrade to Adobe Acrobat version 20.005.30635 / 24.002.20759 or later. 28 1 Microsoft Edge (Chromium) < 127.0.2651.86 Multiple Vulnerabilities: Upgrade to Microsoft Edge version 127.0.2651.86 or later. 21 2 Security Updates for Outlook C2R (February 2024): For Office 365, Office 2016 C2R, or Office 2019, ensure automatic updates are enabled or open any office app and manually perform an update. 16 8 Mozilla Firefox < 129.0: Upgrade to Mozilla Firefox version 129.0 or later. 14 10 Install KB5040437 12 1 Security Updates for Microsoft Excel Products C2R (April 2024): For Office 365, Office 2016 C2R, or Office 2019, ensure automatic updates are enabled or open any office app and manually perform an update. 9 9 This is a report from [Tenable Vulnerability Management](https://cloud.tenable.com/). Tenable Vulnerability Management is published by Tenable, Inc 6100 Merriweather Dr, Columbia, MD 21044 © 2024 Tenable, Inc. All rights reserved.
customer-reply (internal)
Aug 9, 2024, 3:21 PM
Monthly Agent Scan (Internal) Hi Peet! Checking in on these. Anything I can help with? Thanks, Em EMILIE J. JOHNSTON Chief Operations Officer and Executive Vice President Phone: [406.829.2662](tel:406.829.2662) | Fax: 406.829.2355 [[email protected]](mailto:[email protected]) [www.bankofmontana.com](http://www.bankofmontana.com/) 125 Bank Street, Suite 100 Missoula, MT 59802 NMLS #922126 The information contained in this message is proprietary and/or confidential. If you are not the intended recipient, please: (i) delete the message and all copies; (ii) do not disclose, distribute or use the message in any manner; and (iii) notify the sender immediately. In addition, please be aware that any message addressed to our domain is subject to archiving and review by persons other than the intended recipient. Thank you. From: Tenable Vulnerability Management <[email protected]> Sent: Wednesday, August 7, 2024 2:05 PM To: Emilie Johnston <[email protected]>; [email protected] Subject: Tenable Vulnerability Management Scan Results: Monthly Agent Scan (Internal) [EXTERNAL - This message was sent from an email outside of Bank of Montana. Please use caution when following links or opening attachments.] [embedded image] Monthly Agent Scan (Internal) Wed, 07 Aug 2024 20:04:44 UTC Tenable Vulnerability Management completed the scanMonthly Agent Scan (Internal). Please click[here](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset) to view and edit the scan results. Report Summary [embedded image] Plugins: Top 5 Severity Plugin Id Name Critical [202185](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-plugin/vulnerability-details/202185/assets-affected?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) Security Updates for Microsoft Office Products C2R (July 2024) Critical [205016](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-plugin/vulnerability-details/205016/assets-affected?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) Google Chrome < 127.0.6533.99 Multiple Vulnerabilities Critical [97085](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-plugin/vulnerability-details/97085/assets-affected?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) Microsoft Office Unsupported Channel Version Detection Critical [179635](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-plugin/vulnerability-details/179635/assets-affected?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) Microsoft Teams < 1.6.0.18681 RCE Critical [190541](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-plugin/vulnerability-details/190541/assets-affected?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) Security Updates for Microsoft Office Products C2R (February 2024) [embedded image] Assets: Top 5 Asset Critical High Medium Low Info Total [bank](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset/asset-details/b990c65d-5664-4938-8f6d-26eb5a7f4db3/vulns?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) 8 0 0 0 46 54 [bom-4r8nk93](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset/asset-details/02f69e7a-ee4f-4637-b322-8881e9536ec0/vulns?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) 7 7 2 1 57 74 [bom-gw4v5s3](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset/asset-details/3d59a204-78ff-4d24-82cd-c4e416da948a/vulns?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) 7 7 2 0 52 68 [bom-84l19d3](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset/asset-details/063c4ed9-172c-4b7e-b0f1-d3b808ab3148/vulns?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) 6 8 3 1 62 80 [bom-15l19d3](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset/asset-details/d33487c7-df6d-4cf4-a176-7ddf0ac1c0c2/vulns?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) 6 7 3 0 56 72 [embedded image] Suggested Remediations (TOP 10) Taking the following actions across 13 assets would resolve 35% of the vulnerabilities on the network: Action to take Vulns Hosts Security Updates for Microsoft Office Products C2R (July 2024): For Office 365, Office 2016 C2R, or Office 2019, ensure automatic updates are enabled or open any office app and manually perform an update. 89 10 Google Chrome < 127.0.6533.99 Multiple Vulnerabilities: Upgrade to Google Chrome version 127.0.6533.99 or later. 60 10 Adobe Reader < 20.005.30635 / 24.002.20759 Multiple Vulnerabilities (APSB24-29): Upgrade to Adobe Reader version 20.005.30635 / 24.002.20759 or later. 46 1 Microsoft Teams < 1.6.0.18681 RCE: Upgrade to Microsoft Teams 1.6.0.18681 or later. 30 10 Adobe Acrobat < 20.005.30635 / 24.002.20759 Multiple Vulnerabilities (APSB24-29): Upgrade to Adobe Acrobat version 20.005.30635 / 24.002.20759 or later. 28 1 Microsoft Edge (Chromium) < 127.0.2651.86 Multiple Vulnerabilities: Upgrade to Microsoft Edge version 127.0.2651.86 or later. 21 2 Security Updates for Outlook C2R (February 2024): For Office 365, Office 2016 C2R, or Office 2019, ensure automatic updates are enabled or open any office app and manually perform an update. 16 8 Mozilla Firefox < 129.0: Upgrade to Mozilla Firefox version 129.0 or later. 14 10 Install KB5040437 12 1 Security Updates for Microsoft Excel Products C2R (April 2024): For Office 365, Office 2016 C2R, or Office 2019, ensure automatic updates are enabled or open any office app and manually perform an update. 9 9 This is a report from[Tenable Vulnerability Management](https://cloud.tenable.com/). Tenable Vulnerability Management is published by Tenable, Inc 6100 Merriweather Dr, Columbia, MD 21044 © 2024 Tenable, Inc. All rights reserved.
customer-reply (internal)
Aug 22, 2024, 5:25 PM
Monthly Agent Scan (Internal) Hi Peet, Checking back on these! Thanks, Em EMILIE J. JOHNSTON Chief Operations Officer and Executive Vice President Phone: [406.829.2662](tel:406.829.2662) | Fax: 406.829.2355 [[email protected]](mailto:[email protected]) [www.bankofmontana.com](http://www.bankofmontana.com/) 125 Bank Street, Suite 100 Missoula, MT 59802 NMLS #922126 The information contained in this message is proprietary and/or confidential. If you are not the intended recipient, please: (i) delete the message and all copies; (ii) do not disclose, distribute or use the message in any manner; and (iii) notify the sender immediately. In addition, please be aware that any message addressed to our domain is subject to archiving and review by persons other than the intended recipient. Thank you. From: Tenable Vulnerability Management <[email protected]> Sent: Wednesday, August 7, 2024 2:05 PM To: Emilie Johnston <[email protected]>; [email protected] Subject: Tenable Vulnerability Management Scan Results: Monthly Agent Scan (Internal) [EXTERNAL - This message was sent from an email outside of Bank of Montana. Please use caution when following links or opening attachments.] [embedded image] Monthly Agent Scan (Internal) Wed, 07 Aug 2024 20:04:44 UTC Tenable Vulnerability Management completed the scanMonthly Agent Scan (Internal). Please click[here](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset) to view and edit the scan results. Report Summary [embedded image] Plugins: Top 5 Severity Plugin Id Name Critical [202185](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-plugin/vulnerability-details/202185/assets-affected?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) Security Updates for Microsoft Office Products C2R (July 2024) Critical [205016](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-plugin/vulnerability-details/205016/assets-affected?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) Google Chrome < 127.0.6533.99 Multiple Vulnerabilities Critical [97085](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-plugin/vulnerability-details/97085/assets-affected?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) Microsoft Office Unsupported Channel Version Detection Critical [179635](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-plugin/vulnerability-details/179635/assets-affected?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) Microsoft Teams < 1.6.0.18681 RCE Critical [190541](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-plugin/vulnerability-details/190541/assets-affected?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) Security Updates for Microsoft Office Products C2R (February 2024) [embedded image] Assets: Top 5 Asset Critical High Medium Low Info Total [bank](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset/asset-details/b990c65d-5664-4938-8f6d-26eb5a7f4db3/vulns?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) 8 0 0 0 46 54 [bom-4r8nk93](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset/asset-details/02f69e7a-ee4f-4637-b322-8881e9536ec0/vulns?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) 7 7 2 1 57 74 [bom-gw4v5s3](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset/asset-details/3d59a204-78ff-4d24-82cd-c4e416da948a/vulns?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) 7 7 2 0 52 68 [bom-84l19d3](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset/asset-details/063c4ed9-172c-4b7e-b0f1-d3b808ab3148/vulns?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) 6 8 3 1 62 80 [bom-15l19d3](https://cloud.tenable.com/tio/app.html#/assess/scans/vm-scans/folders/my-scans/scan-details/14/c5c7e7b0-c38b-451f-82ba-93a87d56c822/by-asset/asset-details/d33487c7-df6d-4cf4-a176-7ddf0ac1c0c2/vulns?appConfig=ewogICAgInNlbGVjdGVkQXBwbGljYXRpb24iOiAidGVuYWJsZV9pbyIsCiAgICAic2VsZWN0ZWRBcHBsaWNhdGlvblRpdGxlTmV3IjogIlZ1bG5lcmFiaWxpdHkgTWFuYWdlbWVudCIsCiAgICAic2VsZWN0ZWRBcHBDb25maWciOiB7CiAgICAgICAgInNjYW5UYWJzIjogewogICAgICAgICAgICAibGlzdCI6ICJhbGwiCiAgICAgICAgfSwKICAgICAgICAiZmluZGluZ1RhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9LAogICAgICAgICJhc3NldFRhYnMiOiB7CiAgICAgICAgICAgICJsaXN0IjogImFsbCIKICAgICAgICB9CiAgICB9Cn0=) 6 7 3 0 56 72 [embedded image] Suggested Remediations (TOP 10) Taking the following actions across 13 assets would resolve 35% of the vulnerabilities on the network: Action to take Vulns Hosts Security Updates for Microsoft Office Products C2R (July 2024): For Office 365, Office 2016 C2R, or Office 2019, ensure automatic updates are enabled or open any office app and manually perform an update. 89 10 Google Chrome < 127.0.6533.99 Multiple Vulnerabilities: Upgrade to Google Chrome version 127.0.6533.99 or later. 60 10 Adobe Reader < 20.005.30635 / 24.002.20759 Multiple Vulnerabilities (APSB24-29): Upgrade to Adobe Reader version 20.005.30635 / 24.002.20759 or later. 46 1 Microsoft Teams < 1.6.0.18681 RCE: Upgrade to Microsoft Teams 1.6.0.18681 or later. 30 10 Adobe Acrobat < 20.005.30635 / 24.002.20759 Multiple Vulnerabilities (APSB24-29): Upgrade to Adobe Acrobat version 20.005.30635 / 24.002.20759 or later. 28 1 Microsoft Edge (Chromium) < 127.0.2651.86 Multiple Vulnerabilities: Upgrade to Microsoft Edge version 127.0.2651.86 or later. 21 2 Security Updates for Outlook C2R (February 2024): For Office 365, Office 2016 C2R, or Office 2019, ensure automatic updates are enabled or open any office app and manually perform an update. 16 8 Mozilla Firefox < 129.0: Upgrade to Mozilla Firefox version 129.0 or later. 14 10 Install KB5040437 12 1 Security Updates for Microsoft Excel Products C2R (April 2024): For Office 365, Office 2016 C2R, or Office 2019, ensure automatic updates are enabled or open any office app and manually perform an update. 9 9 This is a report from[Tenable Vulnerability Management](https://cloud.tenable.com/). Tenable Vulnerability Management is published by Tenable, Inc 6100 Merriweather Dr, Columbia, MD 21044 © 2024 Tenable, Inc. All rights reserved.
[email protected] (internal)
Feb 13, 2025, 8:54 PM
Edits made via Bulk Update Tool - see change log for this timestamp
| Started | Ended | Hours | Notes |
|---|---|---|---|
| No time entries | |||