ControlUp offers a rich set of capabilities to improve the digital experience for employees using any desktop, any application, anywhere.
Pulse AI analyzes real-time patterns across endpoints, apps, networks, and users. It suppresses expected activity to detect and alert only what matters.
Monitor, troubleshoot, and optimize every virtual desktop before slow sessions and app crashes interrupt your workforce.
ControlUp for DesktopsStay in control of every device. Prevent desktop issues before they disrupt employees or flood your IT queue.
ControlUp for ComplianceAutomate endpoint compliance across every device. Close security gaps and enforce policies without slowing IT down or getting in the way.
Pinpoint and fix SaaS and web app issues fast with real-time visibility across every device, browser, and network before employees feel the impact.
ControlUp Migrate for Windows 365Migrate faster with less risk. Automated workflows replace manual steps, so your move to Cloud PCs is done right.
ControlUp DaaS IQIntelligent autoscaling and cost control for Azure Virtual Desktop environments.
Smarter root cause analysis, automated remediation, and AI-powered diagnostics. Fix issues faster across every device and app.
Patching & RemediationDeploy patches and remediate vulnerabilities across every endpoint, automatically and at scale. Stay secure without overwhelming IT.
Endpoint Risk MitigationSpot, prioritize, and remediate risks automatically. Keep endpoints secure and compliant without slowing desktop teams down.
Live Remote ManagementReal-time endpoint telemetry and silent remote remediation. See and fix issues the moment they happen, without disrupting the employee.
Proactively prevent issues and resolve tickets faster wherever hybrid workers are, whatever device they’re on.
Autonomous IT OperationsShift IT from reactive to autonomous. Automatically detect, remediate, and prevent issues across your entire estate.
Increase IT EfficiencyDo more with less. One platform to centralize visibility, streamline operations, and free IT to focus on what actually matters.
IT Cost OptimizationRight-size VDI, reclaim unused licenses, and make smarter device refresh decisions backed by real usage data and performance metrics.
Explore content, tools, and insights to simplify IT and improve the digital employee experience.
A global organization of technology professionals transforming the desktop monitoring marketplace.
ControlUp offers a rich set of capabilities to improve the digital experience for employees using any desktop, any application, anywhere.
Pulse AI analyzes real-time patterns across endpoints, apps, networks, and users. It suppresses expected activity to detect and alert only what matters.
Monitor, troubleshoot, and optimize every virtual desktop before slow sessions and app crashes interrupt your workforce.
ControlUp for DesktopsStay in control of every device. Prevent desktop issues before they disrupt employees or flood your IT queue.
ControlUp for ComplianceAutomate endpoint compliance across every device. Close security gaps and enforce policies without slowing IT down or getting in the way.
Pinpoint and fix SaaS and web app issues fast with real-time visibility across every device, browser, and network before employees feel the impact.
ControlUp Migrate for Windows 365Migrate faster with less risk. Automated workflows replace manual steps, so your move to Cloud PCs is done right.
ControlUp DaaS IQIntelligent autoscaling and cost control for Azure Virtual Desktop environments.
Smarter root cause analysis, automated remediation, and AI-powered diagnostics. Fix issues faster across every device and app.
Patching & RemediationDeploy patches and remediate vulnerabilities across every endpoint, automatically and at scale. Stay secure without overwhelming IT.
Endpoint Risk MitigationSpot, prioritize, and remediate risks automatically. Keep endpoints secure and compliant without slowing desktop teams down.
Live Remote ManagementReal-time endpoint telemetry and silent remote remediation. See and fix issues the moment they happen, without disrupting the employee.
Proactively prevent issues and resolve tickets faster wherever hybrid workers are, whatever device they’re on.
Autonomous IT OperationsShift IT from reactive to autonomous. Automatically detect, remediate, and prevent issues across your entire estate.
Increase IT EfficiencyDo more with less. One platform to centralize visibility, streamline operations, and free IT to focus on what actually matters.
IT Cost OptimizationRight-size VDI, reclaim unused licenses, and make smarter device refresh decisions backed by real usage data and performance metrics.
Explore content, tools, and insights to simplify IT and improve the digital employee experience.
A global organization of technology professionals transforming the desktop monitoring marketplace.
This document addresses hardcoded key vulnerability (CVE-2021-45913) in Controlup Real-Time.
The authentication process between ControlUp Real-Time Console/Monitor and ControlUp Real-Time Agents was based on hardcoded keys. This key could have been extracted from a ControlUp Real-Time Console/Monitor binary file and a potential attacker might use it to craft a fake ControlUp Real-Time Console/Monitor that would be able to successfully authenticate to ControlUp Real-Time Agents and run malicious actions (OS commands) with SYSTEM level privilege on a machine with the ControlUp Real-Time Agent installed.
We strongly urge you to do the following as soon as possible:
It is important to update/uninstall all ControlUp Real-Time Agents even if they are no longer in use. ControlUp Real-Time Agents of versions lower than 8.5 can put your organization at risk even if there is no ControlUp Console/Monitor connected to them. You can watch this 2-minute video to learn how to easily find machines with older ControlUp Real-Time Agent versions.
Upgrade Guides:
Upgrade Guide for Hybrid Cloud 8.x to 8.5
On-Premises Upgrade Guide 8.x to 8.5
Please read more about the new features and security enhancements in our Security Best Practices Guide.
Credits – Michael N. Henry and James Burton, Facebook Red Team.