Secure Unified Endpoint Management 25.4.0
Table of Contents
About this Release
Matrix42 Secure Unified Endpoint Management 25.4 provides new and improved features that have been implemented. During the development of this version, we have been focusing on valued feedback from our customers and partners to provide an ideal feature selection.
Visit the following link to the Matrix42 YouTube video to get a short overview presentation of the major new features.
System Requirements
Please refer to the System Requirements document.
Overview
New Features for Unified Endpoint Management
Bug Fixes
New Features
Please find all new Unified Endpoint Management features for 25.4 below.
UEM Patch & Vulnerabilities
Patch Management information from Empirum is greatly enhanced and allows users to easily get the information the need based on the great data navigation and dashboard capabilities of the ESM platform. The updated Patch & Vulnerabilities section contains now the following feature set:
- Updated Patch Management Dashboard based on the new Dashboard capabilities of the ESMP
- Automatically synchronize the Patch catalog with patch details, associated bulletins, and CVE numbers
- List of all patches, service Packs, and bulletins
- List of patch state of computers
- Update of the computer patch state with every patch scan and fix run sent from Empirum
- Detect if the connected Empirum system has a valid Patch Management license
See the knowledge base article for more information.
Bug Fixes
- PRB38874: UEM Assignments for OS Sources no longer working.
- Issue when creating Assignments if selected core system cannot be reached. New details in Log and Notification added.
Improvements and Fixes after Initial Release
- UEM 25.4.0.44 (17.02.2026)
- PRB39326: UEM Console - Package Upload no longer works after fresh installation of UEM Extension.
- Changed the navigation item "Patch" to show a list of patches without the relation to vendor and product to allow better handling and correct counting of patches.
- Added a "Product View" tab to the Patch grid for easy navigation and grouping based on vendor, product, and version.
- UEM 25.4.0.42 (16.01.2026)
- Added reset of the Patch Catalog sync to initiate a full synchronization with the next scheduled catalog update to ensure all CVE data is updated correctly.
The next catalog sync is a full synchronization and will take some time and cause some system load. All subsequent synchronizations will be differential again.
- UEM 25.4.0.41 (15.01.2026)
- PRB39220: Extremely High System Load caused by ESB. Error fixed when patch status message from Empirum contains data of patches which were not yet synchronized in ESMP.
- Renamed the "Patch & Vulnerabilities" dashboard to "Insights"
- The operating system widgets are now moved to a separate tab of the Insights dashboard.
- The preview for patches now shows the related CVEs in a list. Selecting a CVE shows the new CVE preview.
- New Computer Patch Report: Shows detailed information about the patch state of a computer. Available as the “Patch Report” action on a single computer object and pre-filtered by the selected computer.
- New Patch Catalog Report: Provides an overview of patch catalog synchronization and catalog content.
- Additional CVE information: A new navigation item “Vulnerabilities” provides details about CVEs linked to patches in the catalog. The preview allows opening the related CVE and NIST pages in external sources. Quick filters based on the CVSS and VRR score are available.
- Fixed cases of failed Patch Status import (SQL date time being out of range)
- "Delete" action removed for read-only entities
- UEM 25.4.0.25 (03.12.2025)
- New Patch Status Report provides an overview of a patch including a list of computers where it is installed or detected as missing. The report can be printed or subscribed to get an updated email on a regular base.
- New metric widgets are added to the Patch & Vulnerability dashboard which provide information on missing patches. A drill down shows the patches from where further details can be retrieved.
- UEM 25.4.0.23 (20.11.2025)
- Endpoint Devices preview now shows in the Patch Status tab details of the installed and missing patches and service packs.
- UEM 25.4.0.21 (05.11.2025)
- Update of the Patch grid:
- Adjusted the column width and which columns are shown/hidden by default
- Added quick filters based on the patch vulnerability scoring
- VRR and CVSS numbers 7 or higher are displayed in red
- PRB39049: Improvement for Add/Remove Objects to/from Assignment activities and better Error handling
- Fixed an issue where the Windows 10 and 11 device version dashboard did not apply the Patch and Vulnerability date filters
- Fixed exception when parsing missing data from Intune API
- Update of the Patch grid:
- UEM 25.4.0.17 (23.10.2025)
- Display in the Patches and Service Pack preview the computers which have it installed or missing
- The affected Product Name is added to Patch status list
- Fixed: Without NT4 domain name set in domain data the user can not create a computer in UEM. The Domain name used to create the computer in Empirum is now taken from the domain name if the NT4Domain field is not set (EntraID/AAD domains).
- Fixed: In Endpoint Devices navigation Windows Server 2025 is shown as Undefined in the Operating System column. Windows Server 2025 is added to UEMOperatingSystem Pickup and Service Bus model (requires updated Empirum and Silverback sender to be filled correctly).
- UEM 25.4.0.13 (8.10.2025)
- PRB38985: For some objects, no domain is passed in the URL. ShowLog then reports “Computer not found” instead of displaying logs.
- Fixed DisplayExpression in preview for Patch & Vulnerabilities > Patches
- Fixed DisplayExpression in preview for Patch & Vulnerabilities > Service Packs
- Fixed UEM action audiences
