Security update CVE-2024-45526 detected as malware by CrowdStrike Falcon Sensor

[rodolfo-chacon]

Type of issue

• Bug
• Enhancement
• Compliance
• Question
• Help wanted

Current Behavior

Upgrading version from 1.5.374.36 to 1.5.374.70 is causing our antivirus software to deem our builds as malware. We attempted upgrading to later versions, leading to the same results.

Expected Behavior

I am expecting our builds not to be quarantined by our antivirus software.

Steps To Reproduce

No response

Environment

- OS: Windows 10
- Environment:
- Runtime:
- Nuget Version: 1.5.374.70
- Component:
- Server:
- Client:

Anything else?

Falcon Sensor-CSFalconService/Operational:

A file was quarantined because malicious behavior was detected.

I ran further tests and found the following issue, not sure if this is related to quarantine:

Opc.Ua.Security.Certificates.csproj : error NU1903: Warning As Error: Package 'System.Formats.As
n1' 8.0.0 has a known high severity vulnerability, GHSA-447r-wph3-92pm

[romanett]

@rodolfo-chacon Does upgrading to the latest Version 1.5.374.126 solve this issue?

[rodolfo-chacon]

Greetings @romanett, I've re-run all tests and still experiencing same issues with latest release 1.5.374.126. We are trying to collect more logs for additional details.

[romanett]

@rodolfo-chacon we recommend to put the wohl project/solution into a Virus Scanner excluded folder.