Secure Access 13.54$$$Important: Three Vulnerabilities Addressed in Secure Access 13.54 Server$$$$$$13.54 is a maintenance release that also addresses three security vulnerabilities that would allow attackers with administrative access to the management console to interfere with other administrators or bypass certain access controls.$$$$$$The highest CVSS 4.0 score of these vulnerabilities is 7.0 – High$$$$$$For more information on security changes see our 13.54 security advisory.$$$$$$ $$$$$$Release notes:$$$$$$Windows server updates include:$$$$$$Fixed an infrequent issue with Warehouse upgrades which would require a manual re-index of the database to resolve.$$$Added a client setting for location data which enables administrators to set accuracy tolerance (in meters). Location data outside the tolerance will be treated as inaccurate and not reported.$$$Improved error handling for rare invalid configurations (e.g. a Publisher target with blank hostname or a certificate configured in the Warehouse with an empty value.)$$$Client updates for all platforms include:$$$$$$Improved performance on high speed; high latency networks.$$$Improved performance for uploads taking place outside the tunnel on non-Windows platforms; especially iPhone and iPad devices.$$$Windows client updates include:$$$$$$Fixed a frequent issue that caused delays in renewing VIP addresses. $$$Fixed a frequent issue with NAC that caused scan results to be ignored if the NAC policy had not yet been loaded.$$$Fixed a rare issue where device authentication rejected TPM-backed certificates signed with RSA-PSS. The client will now disable RSA-PSS signature algorithm if it detects that encryption on a key and certificate pair fails.$$$Android client updates include:$$$$$$Fixed a rare issue with DNS that caused certain requests to go inside tunnel instead of outside tunnel when no active interfaces were available.$$$iOS client updates include:$$$$$$Fixed a rare issue with supervised devices blocking network traffic if the MDM enables the Content Filter without a VPN configuration. The issue occurs on first-time installations of the Secure Access client until the Content Filter is removed; or the device connects to the Secure Access server.$$$macOS client updates include:$$$$$$Fixed an intermittent issue with connection attempts getting stuck in the connecting state if the device was not rebooted after a client update or initial install.$$$Fixed a rare issue with the client blocking network traffic in the Content Filter while the client disconnected.$$$Added an option to perform bandwidth tests inside the Secure Access tunnel.