Qualys Status
Real-time updates of Qualys issues and outages
Qualys status is Operational
Cloud Agent (CA)
Policy Audit / Policy Compliance (PA / PC)
Security Configuration Assessment (SCA)
Global AssetView (GAV) /CyberSecurity Asset Management (CSAM)
AssetView (AV)
CertView (CERT)
Cloud Agent (CA)
Active Incidents
No active incidents
Recently Resolved Incidents
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys KSA Platform 1.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12380
Qualys Cloud Platform Operations is currently observing that the Connectors Appliance tab is not loading and is getting redirected to the login page within the EU Platform-2.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12376.
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys EU Platform 2.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12378
Qualys Cloud Operations is currently investigating an issue that is preventing cloud agents activated for Patch Management from launching existing and newly created On-Demand and Scheduled jobs. We have observed that the associated patch manifests are not being assigned to the cloud agent systems applied to the jobs thus impacting users patch deployments. Further updates will be shared as they become available. The ticket reference for this incident is IM-12377.
The issue has been identified and a fix is being implemented.
Qualys Cloud Platform Operations is currently investigating an issue on connectors on IN platform. Users will see an impact on connectors run, inventory and evaluation data.
Further updates will be shared as they become available.
Ticket reference for this incident is IM-12375
Qualys Cloud Operations has identified an issue where the AIX cloud agent is causing core dumping on the host systems. This behavior has been observed on hosts which have the AIX cloud agent installed running version 4.20.2.3 and prior. The core dumps are generated due to the following behaviors observed thus far: memory constraints, agent binary download failure (autoupgrade) or the agent stops working temporarily. A fix is being created and verified to permanently resolve the issue. In the meantime, one of the following workarounds can be implemented to resolve:
1). Upgrade the AIX cloud agent to version 6.0 MANUALLY on the affected systems.
OR
2). Edit the /etc/security/limits file and set the following values on the impacted host systems: - Set data segment size to unlimited - data = -1 - Set stack size to unlimited - stack = -1
To further expand on the agent binary download failure, it is recommended that self-patch be disabled in the configuration profiles currently assigned to user's AIX cloud agents at this time. The impacted AIX cloud agents may be attempting to download the new binary file frequently and due to the download failures observed , this will cause further core dumps.
The ticket reference for this Incident is IM-12367
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Qualys Outage Survival Guide
Qualys Components
Qualys US Platform 1
Global AssetView (GAV) /CyberSecurity Asset Management (CSAM)
AssetView (AV)
CertView (CERT)
Cloud Agent (CA)
Qualys Cloud Operations has identified an issue where the AIX cloud agent is causing core dumping on the host systems. This behavior has been observed on hosts which have the AIX cloud agent installed running version 4.20.2.3 and prior. The core dumps are generated due to the following behaviors observed thus far: memory constraints, agent binary download failure (autoupgrade) or the agent stops working temporarily. A fix is being created and verified to permanently resolve the issue. In the meantime, one of the following workarounds can be implemented to resolve:
1). Upgrade the AIX cloud agent to version 6.0 MANUALLY on the affected systems.
OR
2). Edit the /etc/security/limits file and set the following values on the impacted host systems: - Set data segment size to unlimited - data = -1 - Set stack size to unlimited - stack = -1
To further expand on the agent binary download failure, it is recommended that self-patch be disabled in the configuration profiles currently assigned to user's AIX cloud agents at this time. The impacted AIX cloud agents may be attempting to download the new binary file frequently and due to the download failures observed , this will cause further core dumps.
The ticket reference for this Incident is IM-12367
Total Cloud
Container Security (CS)
Continuous Monitoring (CM)
Endpoint Detection and Response (EDR)
File Integrity Monitoring (FIM)
Extended Detection and Response (XDR)
Malware Detection (MD)
Indication of Compromise (IOC)
Out-of-Band Configuration Assessment (OCA)
Network Passive Sensor (PS)
Patch Management (PM)
PCI Compliance (PCI)
Policy Audit / Policy Compliance (PA / PC)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Qualys Gateway Service (QGS)
Security Assessment Questionnaire (SAQ)
Security Configuration Assessment (SCA)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
VMDR Mobile
Threat Protection (TP)
Vulnerability Management (VM)
Web Application Firewall (WAF)
Web Application Scanning (WAS)
SaaS Detection and Response (SDR)
Custom Assessment and Remediation (CAR)
Unified Dashboard (UD)
Connector Centralization
Qualys Flow (QFLOW)
VMDR OT
Enterprise TruRisk Management (ETM)
TotalAI
Qualys US Platform 2
Global AssetView (GAV) /CyberSecurity Asset Management (CSAM)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
AssetView (AV)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
CertView (CERT)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Cloud Agent (CA)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Qualys Cloud Operations has identified an issue where the AIX cloud agent is causing core dumping on the host systems. This behavior has been observed on hosts which have the AIX cloud agent installed running version 4.20.2.3 and prior. The core dumps are generated due to the following behaviors observed thus far: memory constraints, agent binary download failure (autoupgrade) or the agent stops working temporarily. A fix is being created and verified to permanently resolve the issue. In the meantime, one of the following workarounds can be implemented to resolve:
1). Upgrade the AIX cloud agent to version 6.0 MANUALLY on the affected systems.
OR
2). Edit the /etc/security/limits file and set the following values on the impacted host systems: - Set data segment size to unlimited - data = -1 - Set stack size to unlimited - stack = -1
To further expand on the agent binary download failure, it is recommended that self-patch be disabled in the configuration profiles currently assigned to user's AIX cloud agents at this time. The impacted AIX cloud agents may be attempting to download the new binary file frequently and due to the download failures observed , this will cause further core dumps.
The ticket reference for this Incident is IM-12367
Total Cloud
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Container Security (CS)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Continuous Monitoring (CM)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Endpoint Detection and Response (EDR)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
File Integrity Monitoring (FIM)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Extended Detection and Response (XDR)
Malware Detection (MD)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Out-of-Band Configuration Assessment (OCA)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Indication of Compromise (IOC)
Network Passive Sensor (PS)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Patch Management (PM)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
PCI Compliance (PCI)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Policy Audit / Policy Compliance (PA / PC)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Qualys Gateway Service (QGS)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Security Assessment Questionnaire (SAQ)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Security Configuration Assessment (SCA)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
VMDR Mobile
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Threat Protection (TP)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Web Application Firewall (WAF)
Vulnerability Management (VM)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
The issue has been identified and a fix is being implemented.
Web Application Scanning (WAS)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
SaaS Detection and Response (SDR)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Custom Assessment and Remediation (CAR)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Unified Dashboard (UD)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Connector Centralization
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Qualys Flow (QFLOW)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
VMDR OT
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Enterprise TruRisk Management (ETM)
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
TotalAI
US Platform 2 is currently experiencing an issue with logins.
The Qualys Cloud Platform Operations team is actively investigating the login issue. Scans and APIs are working fine. Only the UI Login is impacted. Further updates will be shared as they become available.
The ticket reference for this incident is IM-12368.
Qualys US Platform 3
Global AssetView (GAV) /CyberSecurity Asset Management (CSAM)
AssetView (AV)
CertView (CERT)
Cloud Agent (CA)
Qualys Cloud Operations has identified an issue where the AIX cloud agent is causing core dumping on the host systems. This behavior has been observed on hosts which have the AIX cloud agent installed running version 4.20.2.3 and prior. The core dumps are generated due to the following behaviors observed thus far: memory constraints, agent binary download failure (autoupgrade) or the agent stops working temporarily. A fix is being created and verified to permanently resolve the issue. In the meantime, one of the following workarounds can be implemented to resolve:
1). Upgrade the AIX cloud agent to version 6.0 MANUALLY on the affected systems.
OR
2). Edit the /etc/security/limits file and set the following values on the impacted host systems: - Set data segment size to unlimited - data = -1 - Set stack size to unlimited - stack = -1
To further expand on the agent binary download failure, it is recommended that self-patch be disabled in the configuration profiles currently assigned to user's AIX cloud agents at this time. The impacted AIX cloud agents may be attempting to download the new binary file frequently and due to the download failures observed , this will cause further core dumps.
The ticket reference for this Incident is IM-12367
Extended Detection and Response (XDR)
Total Cloud
Container Security (CS)
Continuous Monitoring (CM)
Endpoint Detection and Response (EDR)
File Integrity Monitoring (FIM)
Malware Detection (MD)
Out-of-Band Configuration Assessment (OCA)
Network Passive Sensor (PS)
Indication of Compromise (IOC)
Patch Management (PM)
PCI Compliance (PCI)
Policy Audit / Policy Compliance (PA / PC)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Qualys Gateway Service (QGS)
SaaS Detection and Response (SDR)
Security Assessment Questionnaire (SAQ)
Security Configuration Assessment (SCA)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Web Application Firewall (WAF)
VMDR Mobile
Threat Protection (TP)
Vulnerability Management (VM)
Web Application Scanning (WAS)
Custom Assessment and Remediation (CAR)
Unified Dashboard (UD)
Connector Centralization
VMDR OT
Qualys Flow (QFLOW)
Total Cloud
Enterprise TruRisk Management (ETM)
TotalAI
Qualys US Platform 4
Global AssetView (GAV) /CyberSecurity Asset Management (CSAM)
AssetView (AV)
CertView (CERT)
Cloud Agent (CA)
Qualys Cloud Operations has identified an issue where the AIX cloud agent is causing core dumping on the host systems. This behavior has been observed on hosts which have the AIX cloud agent installed running version 4.20.2.3 and prior. The core dumps are generated due to the following behaviors observed thus far: memory constraints, agent binary download failure (autoupgrade) or the agent stops working temporarily. A fix is being created and verified to permanently resolve the issue. In the meantime, one of the following workarounds can be implemented to resolve:
1). Upgrade the AIX cloud agent to version 6.0 MANUALLY on the affected systems.
OR
2). Edit the /etc/security/limits file and set the following values on the impacted host systems: - Set data segment size to unlimited - data = -1 - Set stack size to unlimited - stack = -1
To further expand on the agent binary download failure, it is recommended that self-patch be disabled in the configuration profiles currently assigned to user's AIX cloud agents at this time. The impacted AIX cloud agents may be attempting to download the new binary file frequently and due to the download failures observed , this will cause further core dumps.
The ticket reference for this Incident is IM-12367
Total Cloud
Container Security (CS)
Qualys Cloud Operations is currently investigating an issue that is preventing cloud agents activated for Patch Management from launching existing and newly created On-Demand and Scheduled jobs. We have observed that the associated patch manifests are not being assigned to the cloud agent systems applied to the jobs thus impacting users patch deployments. Further updates will be shared as they become available. The ticket reference for this incident is IM-12377.
Continuous Monitoring (CM)
Endpoint Detection and Response (EDR)
File Integrity Monitoring (FIM)
Malware Detection (MD)
Out-of-Band Configuration Assessment (OCA)
Network Passive Sensor (PS)
Patch Management (PM)
Qualys Cloud Operations is currently investigating an issue that is preventing cloud agents activated for Patch Management from launching existing and newly created On-Demand and Scheduled jobs. We have observed that the associated patch manifests are not being assigned to the cloud agent systems applied to the jobs thus impacting users patch deployments. Further updates will be shared as they become available. The ticket reference for this incident is IM-12377.
Indication of Compromise (IOC)
PCI Compliance (PCI)
Policy Audit / Policy Compliance (PA / PC)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Qualys Gateway Service (QGS)
Security Assessment Questionnaire (SAQ)
Web Application Firewall (WAF)
Threat Protection (TP)
Vulnerability Management (VM)
Web Application Scanning (WAS)
Security Configuration Assessment (SCA)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
SaaS Detection and Response (SDR)
VMDR Mobile
Unified Dashboard (UD)
Custom Assessment and Remediation (CAR)
Connector Centralization
Asset Inventory (AI)
VMDR OT
Qualys Flow (QFLOW)
Total Cloud
Enterprise TruRisk Management (ETM)
TotalAI
Qualys CA Platform 1
Global AssetView (GAV) /CyberSecurity Asset Management (CSAM)
AssetView (AV)
CertView (CERT)
Cloud Agent (CA)
Qualys Cloud Operations has identified an issue where the AIX cloud agent is causing core dumping on the host systems. This behavior has been observed on hosts which have the AIX cloud agent installed running version 4.20.2.3 and prior. The core dumps are generated due to the following behaviors observed thus far: memory constraints, agent binary download failure (autoupgrade) or the agent stops working temporarily. A fix is being created and verified to permanently resolve the issue. In the meantime, one of the following workarounds can be implemented to resolve:
1). Upgrade the AIX cloud agent to version 6.0 MANUALLY on the affected systems.
OR
2). Edit the /etc/security/limits file and set the following values on the impacted host systems: - Set data segment size to unlimited - data = -1 - Set stack size to unlimited - stack = -1
To further expand on the agent binary download failure, it is recommended that self-patch be disabled in the configuration profiles currently assigned to user's AIX cloud agents at this time. The impacted AIX cloud agents may be attempting to download the new binary file frequently and due to the download failures observed , this will cause further core dumps.
The ticket reference for this Incident is IM-12367
Total Cloud
Container Security (CS)
Continuous Monitoring (CM)
Endpoint Detection and Response (EDR)
File Integrity Monitoring (FIM)
Malware Detection (MD)
Out-of-Band Configuration Assessment (OCA)
Network Passive Sensor (PS)
Patch Management (PM)
Indication of Compromise (IOC)
Policy Audit / Policy Compliance (PA / PC)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Qualys Gateway Service (QGS)
Security Assessment Questionnaire (SAQ)
Security Configuration Assessment (SCA)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Threat Protection (TP)
Vulnerability Management (VM)
Web Application Scanning (WAS)
Extended Detection and Response (XDR)
SaaS Detection and Response (SDR)
VMDR Mobile
Unified Dashboard (UD)
Connector Centralization
Custom Assessment and Remediation (CAR)
Qualys Flow (QFLOW)
VMDR OT
PCI Compliance (PCI)
Qualys EU Platform 1
Global AssetView (GAV) /CyberSecurity Asset Management (CSAM)
AssetView (AV)
CertView (CERT)
Cloud Agent (CA)
Qualys Cloud Operations has identified an issue where the AIX cloud agent is causing core dumping on the host systems. This behavior has been observed on hosts which have the AIX cloud agent installed running version 4.20.2.3 and prior. The core dumps are generated due to the following behaviors observed thus far: memory constraints, agent binary download failure (autoupgrade) or the agent stops working temporarily. A fix is being created and verified to permanently resolve the issue. In the meantime, one of the following workarounds can be implemented to resolve:
1). Upgrade the AIX cloud agent to version 6.0 MANUALLY on the affected systems.
OR
2). Edit the /etc/security/limits file and set the following values on the impacted host systems: - Set data segment size to unlimited - data = -1 - Set stack size to unlimited - stack = -1
To further expand on the agent binary download failure, it is recommended that self-patch be disabled in the configuration profiles currently assigned to user's AIX cloud agents at this time. The impacted AIX cloud agents may be attempting to download the new binary file frequently and due to the download failures observed , this will cause further core dumps.
The ticket reference for this Incident is IM-12367
Total Cloud
Container Security (CS)
Continuous Monitoring (CM)
Endpoint Detection and Response (EDR)
File Integrity Monitoring (FIM)
Malware Detection (MD)
Out-of-Band Configuration Assessment (OCA)
Network Passive Sensor (PS)
Patch Management (PM)
PCI Compliance (PCI)
Policy Audit / Policy Compliance (PA / PC)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Extended Detection and Response (XDR)
Qualys Gateway Service (QGS)
Indication of Compromise (IOC)
SaaS Detection and Response (SDR)
Security Assessment Questionnaire (SAQ)
Security Configuration Assessment (SCA)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Web Application Firewall (WAF)
VMDR Mobile
Threat Protection (TP)
Vulnerability Management (VM)
Web Application Firewall (WAF)
Web Application Scanning (WAS)
Unified Dashboard (UD)
Custom Assessment and Remediation (CAR)
Connector Centralization
VMDR OT
Qualys Flow (QFLOW)
Enterprise TruRisk Management (ETM)
TotalAI
Qualys EU Platform 2
Web Application Firewall (WAF)
Global AssetView (GAV) /CyberSecurity Asset Management (CSAM)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys EU Platform 2.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12378
AssetView (AV)
CertView (CERT)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys EU Platform 2.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12378
Cloud Agent (CA)
Qualys Cloud Operations has identified an issue where the AIX cloud agent is causing core dumping on the host systems. This behavior has been observed on hosts which have the AIX cloud agent installed running version 4.20.2.3 and prior. The core dumps are generated due to the following behaviors observed thus far: memory constraints, agent binary download failure (autoupgrade) or the agent stops working temporarily. A fix is being created and verified to permanently resolve the issue. In the meantime, one of the following workarounds can be implemented to resolve:
1). Upgrade the AIX cloud agent to version 6.0 MANUALLY on the affected systems.
OR
2). Edit the /etc/security/limits file and set the following values on the impacted host systems: - Set data segment size to unlimited - data = -1 - Set stack size to unlimited - stack = -1
To further expand on the agent binary download failure, it is recommended that self-patch be disabled in the configuration profiles currently assigned to user's AIX cloud agents at this time. The impacted AIX cloud agents may be attempting to download the new binary file frequently and due to the download failures observed , this will cause further core dumps.
The ticket reference for this Incident is IM-12367
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys EU Platform 2.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12378
Total Cloud
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys EU Platform 2.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12378
Container Security (CS)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys EU Platform 2.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12378
Continuous Monitoring (CM)
Endpoint Detection and Response (EDR)
File Integrity Monitoring (FIM)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys EU Platform 2.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12378
Malware Detection (MD)
Out-of-Band Configuration Assessment (OCA)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys EU Platform 2.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12378
Network Passive Sensor (PS)
Patch Management (PM)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys EU Platform 2.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12378
PCI Compliance (PCI)
Policy Audit / Policy Compliance (PA / PC)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys EU Platform 2.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12378
Qualys Gateway Service (QGS)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys EU Platform 2.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12378
Indication of Compromise (IOC)
SaaS Detection and Response (SDR)
Security Assessment Questionnaire (SAQ)
Security Configuration Assessment (SCA)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
VMDR Mobile
Web Application Firewall (WAF)
Threat Protection (TP)
Vulnerability Management (VM)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys EU Platform 2.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12378
Web Application Scanning (WAS)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys EU Platform 2.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12378
Unified Dashboard (UD)
Connector Centralization
Qualys Cloud Platform Operations is currently observing that the Connectors Appliance tab is not loading and is getting redirected to the login page within the EU Platform-2.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12376.
Custom Assessment and Remediation (CAR)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys EU Platform 2.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12378
Qualys Flow (QFLOW)
VMDR OT
Enterprise TruRisk Management (ETM)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys EU Platform 2.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12378
TotalAI
Qualys EU Platform 3
Global AssetView (GAV) /CyberSecurity Asset Management (CSAM)
AssetView (AV)
CertView (CERT)
Cloud Agent (CA)
Qualys Cloud Operations has identified an issue where the AIX cloud agent is causing core dumping on the host systems. This behavior has been observed on hosts which have the AIX cloud agent installed running version 4.20.2.3 and prior. The core dumps are generated due to the following behaviors observed thus far: memory constraints, agent binary download failure (autoupgrade) or the agent stops working temporarily. A fix is being created and verified to permanently resolve the issue. In the meantime, one of the following workarounds can be implemented to resolve:
1). Upgrade the AIX cloud agent to version 6.0 MANUALLY on the affected systems.
OR
2). Edit the /etc/security/limits file and set the following values on the impacted host systems: - Set data segment size to unlimited - data = -1 - Set stack size to unlimited - stack = -1
To further expand on the agent binary download failure, it is recommended that self-patch be disabled in the configuration profiles currently assigned to user's AIX cloud agents at this time. The impacted AIX cloud agents may be attempting to download the new binary file frequently and due to the download failures observed , this will cause further core dumps.
The ticket reference for this Incident is IM-12367
Total Cloud
Container Security (CS)
Continuous Monitoring (CM)
Endpoint Detection and Response (EDR)
File Integrity Monitoring (FIM)
Malware Detection (MD)
Out-of-Band Configuration Assessment (OCA)
Network Passive Sensor (PS)
Patch Management (PM)
PCI Compliance (PCI)
Policy Audit / Policy Compliance (PA / PC)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Qualys Gateway Service (QGS)
Indication of Compromise (IOC)
Security Assessment Questionnaire (SAQ)
Security Configuration Assessment (SCA)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
VMDR Mobile
Threat Protection (TP)
Vulnerability Management (VM)
Web Application Scanning (WAS)
SaaS Detection and Response (SDR)
Custom Assessment and Remediation (CAR)
Unified Dashboard (UD)
Connector Centralization
Qualys Flow (QFLOW)
Web Application Firewall (WAF)
VMDR OT
Qualys UK Platform 1
Global AssetView (GAV) /CyberSecurity Asset Management (CSAM)
AssetView (AV)
CertView (CERT)
Total Cloud
Cloud Agent (CA)
Qualys Cloud Operations has identified an issue where the AIX cloud agent is causing core dumping on the host systems. This behavior has been observed on hosts which have the AIX cloud agent installed running version 4.20.2.3 and prior. The core dumps are generated due to the following behaviors observed thus far: memory constraints, agent binary download failure (autoupgrade) or the agent stops working temporarily. A fix is being created and verified to permanently resolve the issue. In the meantime, one of the following workarounds can be implemented to resolve:
1). Upgrade the AIX cloud agent to version 6.0 MANUALLY on the affected systems.
OR
2). Edit the /etc/security/limits file and set the following values on the impacted host systems: - Set data segment size to unlimited - data = -1 - Set stack size to unlimited - stack = -1
To further expand on the agent binary download failure, it is recommended that self-patch be disabled in the configuration profiles currently assigned to user's AIX cloud agents at this time. The impacted AIX cloud agents may be attempting to download the new binary file frequently and due to the download failures observed , this will cause further core dumps.
The ticket reference for this Incident is IM-12367
Container Security (CS)
Continuous Monitoring (CM)
Malware Detection (MD)
Patch Management (PM)
PCI Compliance (PCI)
Policy Audit / Policy Compliance (PA / PC)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Qualys Gateway Service (QGS)
Security Assessment Questionnaire (SAQ)
Threat Protection (TP)
Vulnerability Management (VM)
Web Application Scanning (WAS)
File Integrity Monitoring (FIM)
SaaS Detection and Response (SDR)
Network Passive Sensor (PS)
Security Configuration Assessment (SCA)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Out-of-Band Configuration Assessment (OCA)
VMDR Mobile
Unified Dashboard (UD)
Endpoint Detection and Response (EDR)
Connector Centralization
Custom Assessment and Remediation (CAR)
Qualys Flow (QFLOW)
VMDR OT
Enterprise TruRisk Management (ETM)
Qualys IN Platform 1
Global AssetView (GAV) /CyberSecurity Asset Management (CSAM)
Web Application Firewall (WAF)
AssetView (AV)
Cloud Agent (CA)
Qualys Cloud Operations has identified an issue where the AIX cloud agent is causing core dumping on the host systems. This behavior has been observed on hosts which have the AIX cloud agent installed running version 4.20.2.3 and prior. The core dumps are generated due to the following behaviors observed thus far: memory constraints, agent binary download failure (autoupgrade) or the agent stops working temporarily. A fix is being created and verified to permanently resolve the issue. In the meantime, one of the following workarounds can be implemented to resolve:
1). Upgrade the AIX cloud agent to version 6.0 MANUALLY on the affected systems.
OR
2). Edit the /etc/security/limits file and set the following values on the impacted host systems: - Set data segment size to unlimited - data = -1 - Set stack size to unlimited - stack = -1
To further expand on the agent binary download failure, it is recommended that self-patch be disabled in the configuration profiles currently assigned to user's AIX cloud agents at this time. The impacted AIX cloud agents may be attempting to download the new binary file frequently and due to the download failures observed , this will cause further core dumps.
The ticket reference for this Incident is IM-12367
CertView (CERT)
Total Cloud
Qualys Cloud Platform Operations is currently investigating an issue on connectors on IN platform. Users will see an impact on connectors run, inventory and evaluation data.
Further updates will be shared as they become available.
Ticket reference for this incident is IM-12375
Container Security (CS)
Continuous Monitoring (CM)
Endpoint Detection and Response (EDR)
File Integrity Monitoring (FIM)
Malware Detection (MD)
Out-of-Band Configuration Assessment (OCA)
Network Passive Sensor (PS)
Patch Management (PM)
PCI Compliance (PCI)
Policy Audit / Policy Compliance (PA / PC)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Web Application Firewall (WAF)
Qualys Gateway Service (QGS)
Security Assessment Questionnaire (SAQ)
Security Configuration Assessment (SCA)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
VMDR Mobile
Threat Protection (TP)
Vulnerability Management (VM)
Web Application Scanning (WAS)
Web Application Firewall (WAF)
SaaS Detection and Response (SDR)
Unified Dashboard (UD)
Custom Assessment and Remediation (CAR)
Connector Centralization
Qualys Cloud Platform Operations is currently investigating an issue on connectors on IN platform. Users will see an impact on connectors run, inventory and evaluation data.
Further updates will be shared as they become available.
Ticket reference for this incident is IM-12375
Qualys Flow (QFLOW)
VMDR OT
Qualys AE Platform 1
Global AssetView (GAV) /CyberSecurity Asset Management (CSAM)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
AssetView (AV)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
CertView (CERT)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Cloud Agent (CA)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Qualys Cloud Operations has identified an issue where the AIX cloud agent is causing core dumping on the host systems. This behavior has been observed on hosts which have the AIX cloud agent installed running version 4.20.2.3 and prior. The core dumps are generated due to the following behaviors observed thus far: memory constraints, agent binary download failure (autoupgrade) or the agent stops working temporarily. A fix is being created and verified to permanently resolve the issue. In the meantime, one of the following workarounds can be implemented to resolve:
1). Upgrade the AIX cloud agent to version 6.0 MANUALLY on the affected systems.
OR
2). Edit the /etc/security/limits file and set the following values on the impacted host systems: - Set data segment size to unlimited - data = -1 - Set stack size to unlimited - stack = -1
To further expand on the agent binary download failure, it is recommended that self-patch be disabled in the configuration profiles currently assigned to user's AIX cloud agents at this time. The impacted AIX cloud agents may be attempting to download the new binary file frequently and due to the download failures observed , this will cause further core dumps.
The ticket reference for this Incident is IM-12367
Total Cloud
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Container Security (CS)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Continuous Monitoring (CM)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Endpoint Detection and Response (EDR)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
File Integrity Monitoring (FIM)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Out-of-Band Configuration Assessment (OCA)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Network Passive Sensor (PS)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Patch Management (PM)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Policy Audit / Policy Compliance (PA / PC)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Qualys Gateway Service (QGS)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
SaaS Detection and Response (SDR)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Security Assessment Questionnaire (SAQ)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Security Configuration Assessment (SCA)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Threat Protection (TP)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Vulnerability Management (VM)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Web Application Scanning (WAS)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Unified Dashboard (UD)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Custom Assessment and Remediation (CAR)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Web Application Firewall (WAF)
Connector Centralization
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Qualys Flow (QFLOW)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
VMDR Mobile
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Network Passive Sensor (PS)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
VMDR OT
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
PCI Compliance (PCI)
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
TotalAI
Qualys Cloud Platform Operations is investigating an issue causing Intermittent Login Failure and degraded UI/API performance within AE Platform 1.
Further updates will be provided as they become available.
The ticket reference for this incident is IM-12370.
Qualys KSA Platform 1
Global AssetView (GAV) /CyberSecurity Asset Management (CSAM)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys KSA Platform 1.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12380
AssetView (AV)
CertView (CERT)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys KSA Platform 1.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12380
Cloud Agent (CA)
Qualys Cloud Operations has identified an issue where the AIX cloud agent is causing core dumping on the host systems. This behavior has been observed on hosts which have the AIX cloud agent installed running version 4.20.2.3 and prior. The core dumps are generated due to the following behaviors observed thus far: memory constraints, agent binary download failure (autoupgrade) or the agent stops working temporarily. A fix is being created and verified to permanently resolve the issue. In the meantime, one of the following workarounds can be implemented to resolve:
1). Upgrade the AIX cloud agent to version 6.0 MANUALLY on the affected systems.
OR
2). Edit the /etc/security/limits file and set the following values on the impacted host systems: - Set data segment size to unlimited - data = -1 - Set stack size to unlimited - stack = -1
To further expand on the agent binary download failure, it is recommended that self-patch be disabled in the configuration profiles currently assigned to user's AIX cloud agents at this time. The impacted AIX cloud agents may be attempting to download the new binary file frequently and due to the download failures observed , this will cause further core dumps.
The ticket reference for this Incident is IM-12367
Total Cloud
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys KSA Platform 1.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12380
Container Security (CS)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys KSA Platform 1.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12380
File Integrity Monitoring (FIM)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys KSA Platform 1.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12380
Patch Management (PM)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys KSA Platform 1.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12380
PCI Compliance (PCI)
Policy Audit / Policy Compliance (PA / PC)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys KSA Platform 1.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12380
Qualys Gateway Service (QGS)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys KSA Platform 1.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12380
Security Assessment Questionnaire (SAQ)
VMDR Mobile
Threat Protection (TP)
Vulnerability Management (VM)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys KSA Platform 1.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12380
Web Application Scanning (WAS)
Custom Assessment and Remediation (CAR)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys KSA Platform 1.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12380
Unified Dashboard (UD)
Connector Centralization
Qualys Flow (QFLOW)
Network Passive Sensor (PS)
VMDR OT
Endpoint Detection and Response (EDR)
SaaS Detection and Response (SDR)
Out-of-Band Configuration Assessment (OCA)
Qualys Cloud Platform Operations is investigating an issue causing delays in displaying agent and sensor scan data in the UI on the Qualys KSA Platform 1.
The functionalities for the following modules might be impacted. VM/PC/Cloud Agent: Communication between agents may experience disruptions, preventing delta processing, which results in VM/PC scans not occurring. CSAM: Large messages related to SWCA events may experience delays in processing CertView: CertView Scans Impacted Patch Management: The workflows for PM, MTG, and ISL jobs, including report generation and downloads, may be affected. Container Security: After scanning, the snapshot will not be uploaded for further scanning using the delta processor. QGS/CAMS: Customers may encounter issues when attempting to upload or download custom certificates and appliance images. ETM: The generation of API and Purge reports will not work. WAS: Reporting functionalities may experience disruptions. FIM: FIM events and audit data might not be visible. PCRS: PCRS reporting will be impacted. Total Cloud: Job managers are unstable, leading to processing delays. This will cause a queue of connectors in both the TC and Connector modules. SEM: Updated values will not be reflected in the UI; lag increases, and vulnerability details will not be updated. CAR: There will be breaks in script content, output, asset job results, and the script details page. Custom QID detections in the VMDR UI will be visible. Alerting: Alerts may not trigger as expected when events match for all modules utilizing the alerting services. Reporting: Customers may face challenges when uploading and downloading reports for modules using the RSV2 reporting service, and notifications for these reports will not be sent. Audit-log-service: Uploading and downloading audit log reports will not work. OCA: Delta processing will be paused, and the last scan date will not update. CIPS: Customers using the CIPS service will be affected and will not see the data.
We will provide further updates as they become available.
Ticket reference for this incident is IM-12380
TotalAppSec (TAS)
Total AI
Qualys AU Platform 1
Global AssetView (GAV) /CyberSecurity Asset Management (CSAM)
AssetView (AV)
CertView (CERT)
Cloud Agent (CA)
Qualys Cloud Operations has identified an issue where the AIX cloud agent is causing core dumping on the host systems. This behavior has been observed on hosts which have the AIX cloud agent installed running version 4.20.2.3 and prior. The core dumps are generated due to the following behaviors observed thus far: memory constraints, agent binary download failure (autoupgrade) or the agent stops working temporarily. A fix is being created and verified to permanently resolve the issue. In the meantime, one of the following workarounds can be implemented to resolve:
1). Upgrade the AIX cloud agent to version 6.0 MANUALLY on the affected systems.
OR
2). Edit the /etc/security/limits file and set the following values on the impacted host systems: - Set data segment size to unlimited - data = -1 - Set stack size to unlimited - stack = -1
To further expand on the agent binary download failure, it is recommended that self-patch be disabled in the configuration profiles currently assigned to user's AIX cloud agents at this time. The impacted AIX cloud agents may be attempting to download the new binary file frequently and due to the download failures observed , this will cause further core dumps.
The ticket reference for this Incident is IM-12367
Container Security (CS)
Extended Detection and Response (XDR)
Continuous Monitoring (CM)
Indication of Compromise (IOC)
Malware Detection (MD)
Patch Management (PM)
PCI Compliance (PCI)
Policy Audit / Policy Compliance (PA / PC)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366
Qualys Gateway Service (QGS)
Security Assessment Questionnaire (SAQ)
Threat Protection (TP)
Vulnerability Management (VM)
Web Application Scanning (WAS)
Total Cloud
SaaS Detection and Response (SDR)
File Integrity Monitoring (FIM)
Security Configuration Assessment (SCA)
Qualys Cloud Platform Operations is currently investigating an issue on all shared platforms running QWEB version 10.36.0.0 that has cause PC indexing to error out. Customers will observe impact to Reporting, Dashboard Metrics, Control Status, New Policy creation and existing policy changes, new assets missing from the module as well as automation for new builds and secure configuration remediation. Further updates will be shared as they become available. The ticket reference for this incident is IM-12366