SEM 2026.2 release notes
Release date: June 23, 2026
Here's what's new in SEM 2026.2. You can find the applicable system requirements here.
To view release notes, system requirements, and product guide PDFs for supported versions of SEM, see SEM previous versions. To view release notes for multiple versions
New features and improvements in SEM
JDK Update
JDK updated from 17.0.16 to 17.0.19 (Microsoft Build of OpenJDK) for both SEM Manager and Agents (Linux, Windows) in 2026.2, bringing stability and security improvements.
Password & Authentication Security Enhancements
SEM's improved password update experience helps keep your account more secure.
When you update your password, the system will automatically check that your new password hasn't been used before — including your current one. This ensures stronger protection against unauthorized access.
As part of this release, the password encoding algorithm has been upgraded to a more secure standard. Due to this change, existing users will be required to change their password upon their next login. This is a one-time action to ensure all stored credentials meet the latest security requirements.
Concurrent Session Limiting
You can limit the number of concurrent sessions for SEM UI users. Exceeding the limit will display an appropriate error message. This is done to reduce risk of unauthorized system access.
Enforce Default CMC Password Change
SEM now enforces change of default CMC password on first startup from the UI. This is a significant security hardening measure to prevent use of default credentials.
Third-Party License Information
License info for third-party components is now included in both the SEM Agent installer and the Manager appliance/console.
Partition Archival/Unarchival Performance Improvement
Proved partition archival and unarchival performance with bigger buffer size. This addresses customer-reported slowness during archive operations.
Agent Improvements
Increased maximum allowed heap size for agents.
Nutanix Ready Validation — AOS/AHV 7.5 Support
Updated Nutanix Ready Validation includes support for AOS/AHV 7.5, ensuring seamless compatibility with the latest Nutanix environment.
Anomalous Detection with Platform Connect (Technical Preview)
Anomalous Detection is available as a Technical Preview in this release.
During Tech Preview, SEM Anomalous Detection capabilities are included with trial and evaluation licenses and specific licensed customer for the purpose of testing and feedback. Once Anomalous Detection reaches General Availability, these features may require a specific license or additional charges for continued use.
Connect SEM to the SolarWinds SaaS Platform for AI-powered threat detection.
Leverage machine learning-based anomaly detection with out-of-the-box use cases covering critical attack stages like Brute Force, Password Spraying, Port Scanning, Data Exfiltration, and more. For more information, see Anomalous Detection in SEM.
Compliance & NIST Tags
Easily organize and find compliance-related saved searches with new predefined tags. Seven new compliance tags — NIST, FISMA, FERPA, ISO, COBIT, CoCo, and CISP — are available out of the box, with NIST automatically applied to 13 federal saved searches.
Debian Bookworm
Debian Bookworm updated to 12.4deb12u14, bringing updated environments, maintenance updates, bug fixes, and security improvements.
Fixed CVEs
At SolarWinds, we prioritize the swift resolution of CVEs to ensure the security and integrity of our software. In this release, we have successfully addressed the following CVEs.
Third-party CVEs
| CVE-ID | Vulnerability title | Description | Severity |
|---|---|---|---|
| CVE-2025-55754 | Apache Tomcat Improper Neutralization of Escape, Meta, or Control Sequences Vulnerability | Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache Tomcat. Tomcat did not escape ANSI escape sequences in log messages. If Tomcat was running in a console on a Windows operating system, and the console supported ANSI escape sequences, it was possible for an attacker to use a specially crafted URL to inject ANSI escape sequences to manipulate the console and the clipboard and attempt to trick an administrator into running an attacker controlled command. While no attack vector was found, it may have been possible to mount this attack on other operating systems. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.10, from 10.1.0-M1 through 10.1.44, from 9.0.40 through 9.0.108. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.60 though 8.5.100. Other, older, EOL versions may also be affected. Users are recommended to upgrade to version 11.0.11 or later, 10.1.45 or later or 9.0.109 or later, which fix the issue. | 9.6 Critical |
| CVE-2025-55752 | Apache Tomcat Relative Path Traversal Vulnerability | Relative Path Traversal vulnerability in Apache Tomcat. The fix for bug 60013 introduced a regression where the rewritten URL was normalized before it was decoded. This introduced the possibility that, for rewrite rules that rewrite query parameters to the URL, an attacker could manipulate the request URI to bypass security constraints including the protection for /WEB-INF/ and /META-INF/. If PUT requests were also enabled then malicious files could be uploaded leading to remote code execution. PUT requests are normally limited to trusted users and it is considered unlikely that PUT requests would be enabled in conjunction with a rewrite that manipulated the URI. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.10, from 10.1.0-M1 through 10.1.44, from 9.0.0.M11 through 9.0.108. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.6 though 8.5.100. Other, older, EOL versions may also be affected. Users are recommended to upgrade to version 11.0.11 or later, 10.1.45 or later or 9.0.109 or later, which fix the issue. | 7.5 High |
Fixed customer issues
| Case number | Description |
|---|---|
| 02144767 | Data in reports is expanded to 4096 characters and is not truncated at 255 characters. |
| 02073909, 02121692 | Agent connectors do not get stuck in Unknown after upgrading to 2025.4. |
| 02013532 | Log forwarding shows correct timestamp when Agent and manager are in different Timezones. |
| 02048455 | Fixed Agent Offline Timeout rule. |
| 02083675, 02098428 | SMB UI configuration page loads as expected. |
| 01979985 | Output from running the Diskusage CMC command now correctly reflects the expected disk usage values in Nutanix, even though the disk order differs. |
| 01172386 | The Email Active Response connector now works with Gmail SMTP servers as expected. |
Installation or upgrade
For new installations, you can download the installation file from the product page on https://www.solarwinds.com or from the Customer Portal. For more information, see the SEM Installation and Upgrade Guide.
For upgrades, see Upgrade SEM in the SEM Administrator Guide to determine the upgrade path, review best practices for SEM upgrades, and upgrade the SEM components.
Known issues
Incorrect Windows version after custom Java agent installation
The custom Java agent installer in Windows 2025 server may not correctly display Windows versions.
Resolution or workaround: Install Java Development Kit (JDK) 26.0.1.
Legal notices
© 2026 SolarWinds Worldwide, LLC. All rights reserved.
This document may not be reproduced by any means nor modified, decompiled, disassembled, published or distributed, in whole or in part, or translated to any electronic medium or other means without the prior written consent of SolarWinds. All right, title, and interest in and to the software, services, and documentation are and shall remain the exclusive property of SolarWinds, its affiliates, and/or its respective licensors.
SOLARWINDS DISCLAIMS ALL WARRANTIES, CONDITIONS, OR OTHER TERMS, EXPRESS OR IMPLIED, STATUTORY OR OTHERWISE, ON THE DOCUMENTATION, INCLUDING WITHOUT LIMITATION NONINFRINGEMENT, ACCURACY, COMPLETENESS, OR USEFULNESS OF ANY INFORMATION CONTAINED HEREIN. IN NO EVENT SHALL SOLARWINDS, ITS SUPPLIERS, NOR ITS LICENSORS BE LIABLE FOR ANY DAMAGES, WHETHER ARISING IN TORT, CONTRACT OR ANY OTHER LEGAL THEORY, EVEN IF SOLARWINDS HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
The SolarWinds, SolarWinds & Design, Orion, and THWACK trademarks are the exclusive property of SolarWinds Worldwide, LLC or its affiliates, are registered with the U.S. Patent and Trademark Office, and may be registered or pending registration in other countries. All other SolarWinds trademarks, service marks, and logos may be common law marks or are registered or pending registration. All other trademarks mentioned herein are used for identification purposes only and are trademarks of (and may be registered trademarks) of their respective companies.