Microsoft is working to resolve a known issue that causes its Defender for Endpoint enterprise endpoint security platform to incorrectly tag SQL Server software as end-of-life.
According to a service alert seen by BleepingComputer, this bug has been impacting Microsoft Defender XDR customers with SQL Server 2017 and 2019 since at least Wednesday morning.
While Defender flagged the software as no longer supported, SQL Server 2019 is supported until January 2030, while SQL Server 2017 reaches the end of extended support in October 2027, two years from now.
The company has already deployed a fix to address the bug and said the root cause is a code issue introduced by a recent change to end-of-support software.
“Users with SQL Server 2019 and 2017 installed may see inaccurate tagging within Threat and Vulnerability Management. Users may experience inaccurate end-of-life tagging for SQL Server within Microsoft Defender for Endpoint management,” Microsoft said on Thursday morning, almost 24 hours after the issue was confirmed.
“We’re continuing to deploy a fix that’s designed to reverse the offending change that introduced the code issue and will provide a timeline for its completion as one becomes available.”
Although Microsoft noted that this issue may affect “all users that have SQL Server 2017 and 2019 installed,” it has not yet provided more details on the extent of the issue.
However, this ongoing incident has been tagged as an advisory, a designation commonly used to describe a service issue typically involving limited scope or impact.
Last week, the company resolved another bug that caused Defender for Endpoint to incorrectly mark the BIOS firmware on some Dell devices as outdated, prompting users to update it.
Microsoft engineers have also fixed black-screen crashes affecting macOS devices updated after September 29, triggered by a deadlock in the Apple enterprise security framework and occurring when multiple security providers listened to events.
In early September, Redmond mitigated another false positive that was causing an anti-spam service to quarantine emails and erroneously block Exchange Online and Microsoft Teams users from opening URLs.
Join the Breach and Attack Simulation Summit and experience the future of security validation. Hear from top experts and see how AI-powered BAS is transforming breach and attack simulation.
Don’t miss the event that will shape the future of your security strategy