New

• New Oracle Solaris policy: We added a new Center for Internet Security (CIS) policy that provides coverage for Oracle Solaris 11.4.

Improved

• Improved Firefox fingerprinting: We improved our Firefox fingerprinting to now pull the disk version to avoid fingerprinting issues caused by old keys.
• Improved tag functionality: We improved the functionality of defining tags for AWS discovery connections in the Security Console. Previously, only exact matches were made on Key:Value pairs provided for tags. The new functionality allows the use of * as a value so that matches can be made on the Key only, regardless of value.

Fixed

• We fixed an issue where Azure subscription IDs were not logged when their activity log couldn’t be retrieved. The specific subscription ID will now be logged along with the status code when this error occurs.
• We reduced import times for AWS assets with tags. Query times are now up to 5.6 times faster than previously observed.
• We fixed the applicability rules for the built-in Nginx (v1.1.0) and Cisco WLAN Manager (v1.1.0) CIS policies, so that they only run against applicable systems.
• We updated our checks for CVE-2020-17051 to avoid inaccurately reporting non-server operating systems as vulnerable.