Your servers are down and Livewatch is alerting? That's how it should be, but it still makes no sense if we literally spam you with messages if the worst comes to the worst.
We have created a way for you to respond to our alarms quickly and easily. Our job is not to bother you or prevent you from resolving the problems. We just want to make you aware that there is a problem.
New Options If you log in now, in the event of a failure, and go to the overview, you can easily deactivate all monitoring or simply deactivate the alarm. Once the issue is resolved, you can re-enable monitoring.
Questions? If you have any questions, give us a call - or simply leave a message using our support form.
Here we answer questions about server monitoring from Livewatch. If you have a question that we have not yet answered here, please contact us.
In recent months, several critical security vulnerabilities have been discovered in server systems that can potentially have serious consequences for IT security. Some of the most significant vulnerabilities are presented below:
1. CVE-2024-37079: Security vulnerability in VMware vCenter Server
In June 2024, a critical vulnerability was identified in VMware vCenter Server. This vulnerability allows attackers to execute arbitrary code using manipulated packages, leading to a heap buffer overflow and endangering services. VMware has already released a patch that should be installed urgently.
2. CVE-2024-49113: LDAPNightmare in Windows servers
A recently discovered vulnerability in the Windows Lightweight Directory Access Protocol (LDAP) implementation, known as CVE-2024-49113, allows attackers to cause a denial-of-service (DoS) condition by crashing the Local Security Authority Subsystem Service (LSASS). Microsoft fixed this vulnerability in December 2024.
3. CVE-2024-20697: Vulnerability in Windows 11 and Server 2022
A vulnerability in Windows 11 and Windows Server 2022 allows attackers to execute arbitrary code when extracting RAR files. Microsoft fixed this vulnerability in January 2024 and recommends installing the patch and avoiding opening RAR files from unknown sources.
4. CVE-2024-21410: Critical vulnerabilities in Microsoft Exchange servers
The Federal Office for Information Security (BSI) reported in March 2024 that at least 17,000 instances of Microsoft Exchange servers in Germany are vulnerable to critical vulnerabilities. These gaps are already being actively exploited by cyber criminals. The BSI recommends using current versions of Exchange, installing available security updates and configuring the instances securely.
5. CVE-2024-49112: Zero-day vulnerability in Windows and Windows Server
A zero-day vulnerability in Windows and Windows Server enables denial-of-service attacks because it causes the operating system to crash. Windows 10, Windows 11 and Windows Server 2016, 2019 and 2022 are affected. Microsoft fixed this vulnerability in August 2024.