The company confirmed earlier this week that with the latest Windows 11 update, the SonicWall web filtering tool no longer works on the operating system.
According to a report by BleepingComputer, the Windows 11 22H2 update corrupted SonicWall’s Capture Client solution, rendering the operating system’s Web Content Filtering (WCF) useless.
The company is currently working on a fix, but those who cannot wait are advised not to install the latest update for Windows (or roll back to a previous version if possible).
CryptoAPI corruption
“We have identified an inconsistency in Capture Client Windows 3.7.6 and older endpoint clients (opens in a new tab) with Windows 11 version 22H2,” reads the company’s security statement released yesterday. “This causes the Web Content Filtering (WCF) policy to enforce that blocked categories are no longer effective on vulnerable endpoints. The ability to allow or block domains/URLs using custom lists still works normally.”
Explaining what happened, the company said encrypted and decrypted requests and responses that pass between Windows devices and the SonicWall content filtering service go through Microsoft CryptoAPI. Now, since the tech giant modified the APIs, the Capture Client cannot decrypt the response.
“In Windows 11 version 22H2, the Microsoft CryptoAPIs have been modified, so the Capture Client cannot decrypt the response from the SonicWall Content Filtering Service,” the company explained.
A fix is in the works and should be released on February 17, 2023. This will update the Capture Client to version 3.7.7, so keep an eye out for an update.
Until that happens, don’t install any Windows updates, SonicWall says, “As a temporary workaround, we recommend that Windows 11 endpoints not upgrade to 22H2 until Capture Client 3.7.7 for Windows is available.”
Without web content filtering, users can end up on websites with illegal or malicious content, which can lead to malware entering the system. They can also help protect businesses and families from inappropriate viewing.
By: Beeping Computer (opens in a new tab)