AvePoint Online Services Portal GUI Exception

Published: July 17, 2017

Version: 1.0

Executive Summary

AvePoint is releasing this security advisory to inform customers that we experienced a GUI exception that resulted in a brief period of time in which customers were redirected to the incorrect tenant. The issue is addressed in the latest update of AvePoint Online Services.

Advisory Details

AvePoint Online Services experienced a Portal GUI exception that resulted in a period of time in which AOS customers were briefly redirected to the incorrect tenant. According to our research and in cooperation with parties effected, no customer data was compromised. The issue was addressed within two hours. The update was provided on July 13, 2017.

Suggested Actions

Security Actions - No additional action is required.

Mitigation Steps - No additional action is required.

Our customers security and privacy are our highest priority. If you have any questions about this and/or you are contacted by anyone else about this issue, please contact our security team immediately at security@avepoint.com.

For your additional information please find AvePoint’s reporting policy and response plan:
https://www.avepoint.com/company/vulnerability-reporting-policy/