New
- Microsoft Patch Tuesday coverage. This release includes new Microsoft Patch Tuesday content for updated scan coverage for December 2024. Check out our blog post for details.
Improved
Customer Requested
- Audit logging. We’ve enhanced audit logging to capture actions related to Asset Groups, Global Blackouts, Reporting, Scanning, Site Management, Scan Templates, and Scan Credentials.
- F5 BIG coverage. We updated our F5 BIG-IP SSH fingerprinting to improve vulnerability check accuracy.
- Scan Assistant. Scan Assistant version 1.3.9.1 is now available. This version includes enhancements to the certificate rotation process and changes the service to run under a
umaskof 077 for Linux operating systems. - MySQL JDBC driver. The Scan Engine is now able to establish secure connections with TLS 1.1, 1.2, and 1.3 when executing authenticated scans of MySQL databases.
- Remediation Hub. We updated the Remediation Hub’s key metrics to improve how we relay the impact of applying remediations. Now, instead of On-Prem Risk and Cloud Risk, Vulnerabilities Remediated and Assets Updated will be displayed. These metrics represent the percentage of vulnerabilities that will be remediated when implementing the top 25 solutions and the number of assets that will be updated if the top 25 solutions are implemented. Solution Risk Score will also be recalculated when a filter is applied, providing a more accurate view of the vulnerabilities that need to be prioritized.
Fixed
- We fixed an issue that prevented graphs from rendering in HTML reports.
- We fixed an issue stemming from a network error that prevented Azure assets from being integrated. Now, the Security Console will attempt to retrieve log events multiple times.
- We fixed an issue that caused some legacy Shared Credentials to not be visible in the Authentication tab of the Manage Site pages.