VNQM 2025.1.1 release notes
Release date: March 20, 2025
VNQM 2025.1.1 is a service release providing bug and security fixes for release 2025.1. For information about the VNQM release, including EOL notices and upgrade information, see VNQM 2025.1 Release Notes.
VNQM runs on the SolarWinds Platform (self-hosted). VNQM release notes include the updates from the SolarWinds Platform (self-hosted).
New features and improvements in VNQM
There were no features or improvements added for VNQM in this release.
New features and improvements in SolarWinds Platform
DoDIN improvements
- The mandatory notice on the login page is displayed for users who log in using CAC (MFA).
- The logout notification was extended to advise users to close the browser.
- Changes made in the Configuration wizard are displayed as syslog messages in theSolarWinds Platform Web Console Log Viewer.
Fixed CVEs
At SolarWinds, we prioritize the swift resolution of CVEs to ensure the security and integrity of our software. In this release, we have successfully addressed the following CVEs.
Third-party CVEs
| CVE-ID | Vulnerability title | Description | Severity |
|---|---|---|---|
| CVE-2022-45146 | Bouncy Castle Denial of Service Vulnerability | An issue was discovered in the FIPS Java API of Bouncy Castle BC-FJA before 1.0.2.4. Changes to the JVM garbage collector in Java 13 and later trigger an issue in the BC-FJA FIPS modules where it is possible for temporary keys used by the module to be zeroed out while still in use by the module, resulting in errors or potential information loss. NOTE: FIPS compliant users are unaffected because the FIPS certification is only for Java 7, 8, and 11. | 5.5 Medium |
| CVE-2020-15522 | Bouncy Castle Access Control Vulnerability | Bouncy Castle BC Java before 1.66, BC C# .NET before 1.8.7, BC-FJA before 1.0.1.2, 1.0.2.1, and BC-FNA before 1.0.1.1 have a timing issue within the EC math library that can expose information about the private key when an attacker is able to observe timing information for the generation of multiple deterministic ECDSA signatures. | 5.9 Medium |
Fixed customer issues
| Case number | Description | Platform product |
|---|---|---|
| 01892595 |
The CMS service is no longer disabled on the Additional Polling Engine backup. |
Platform |
| 01848003, 01887135 |
Jobs are no longer executed in the wrong order in the JobEngine recurring queue. |
Platform |
| 01885228 |
Active Diagnostics are no longer failing on CRL checks due to an invalid URL. |
Platform |
| 01739108, 01788620 |
The default health checks for High Availability (HA) have been updated to fix an issue that could cause an HA Pool Member to be marked down incorrectly. |
Platform |
| 01868794 |
The WMI/WinRM cached connection no longer fails to perform polling if the target machine is restarted. |
Platform |
| 01870151, 01883737, 01883729, 01884094, 01886765 |
The All Active Alerts page keeps the selected Group By value after refreshing and no longer resets to Severity. |
Platform |
| 01832490, 01737791 |
When the SolarWinds Observability Network Collector license expires, the Network Collector host machine no longer enters in to inconsistent state. |
Platform |
| N/A |
Recent search results in the Global Search feature in the top right corner of all pages are no longer missing. |
Platform |
| 01813022, 01786662 |
Inefficient NotificationItemsGrouped view no longer causes the SolarWinds Platform Web Console to hang and overload the SQL. |
Platform |
| 01801554 |
The PerfStack chart correctly shows the parent node in Reports and Views. |
Platform |
| N/A |
When setting filters in Modern Dashboards, the following error is no longer displayed: An error has occured. RunQuery failed, check fault information. No viable alternative at input 'WITH' in From clause. |
Platform |
| 01889886, 01892048, 01869410, 01826678, 01895860, 01892008, 01889843, 01887071, 01892931, 01897950 |
In-process workers no longer spawn new SNMP jobs before the previous one finishes. |
Platform |
| 01781528, 01890296, 01817223, 01827652, 01801456, 01838159 |
RabbitMQ message queues no longer increase significantly, causing delayed alerts and data sync issues. |
Platform |
| 01887759, 01890307 |
When upgrading to version 2025.1 or later, the Configuration wizard completes successfully and the log no longer contains any errors related to VNQM. |
VNQM |
Legal notices
© 2025 SolarWinds Worldwide, LLC. All rights reserved.
This document may not be reproduced by any means nor modified, decompiled, disassembled, published or distributed, in whole or in part, or translated to any electronic medium or other means without the prior written consent of SolarWinds. All right, title, and interest in and to the software, services, and documentation are and shall remain the exclusive property of SolarWinds, its affiliates, and/or its respective licensors.
SOLARWINDS DISCLAIMS ALL WARRANTIES, CONDITIONS, OR OTHER TERMS, EXPRESS OR IMPLIED, STATUTORY OR OTHERWISE, ON THE DOCUMENTATION, INCLUDING WITHOUT LIMITATION NONINFRINGEMENT, ACCURACY, COMPLETENESS, OR USEFULNESS OF ANY INFORMATION CONTAINED HEREIN. IN NO EVENT SHALL SOLARWINDS, ITS SUPPLIERS, NOR ITS LICENSORS BE LIABLE FOR ANY DAMAGES, WHETHER ARISING IN TORT, CONTRACT OR ANY OTHER LEGAL THEORY, EVEN IF SOLARWINDS HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
The SolarWinds, SolarWinds & Design, Orion, and THWACK trademarks are the exclusive property of SolarWinds Worldwide, LLC or its affiliates, are registered with the U.S. Patent and Trademark Office, and may be registered or pending registration in other countries. All other SolarWinds trademarks, service marks, and logos may be common law marks or are registered or pending registration. All other trademarks mentioned herein are used for identification purposes only and are trademarks of (and may be registered trademarks) of their respective companies.