InsightVM Recent Releases / Apr 09, 2025

Apr 09, 20258.2.0

New

  • Microsoft Patch Tuesday coverage. This release includes new Microsoft Patch Tuesday content for updated scan coverage for April 2025. Check out our blog post for details.
  • VMWare vCenter scan credential support. You can now create, edit, and test a scan credential of the type VMWare vCenter/ESXi.
  • Scans on port 0. You can now detect potentially vulnerable services that are running on port 0.
  • Support for TDS 8.0. We enhanced the scanning capabilities of Microsoft SQL Server targets by adding support for encrypted TDS communication.
  • Vulnerability coverage. We added recurring vulnerability coverage for these software products:
    • Sophos Endpoint (Intercept X Endpoint)
    • Cisco Webex Meetings Desktop App
  • Policy coverage. We added support for Palo Alto Firewall 11 Benchmark v1.1.0 to our built-in policy content.

Improved

  • Improved Site creation experience. We streamlined the site creation experience and introduced a new Autosave feature, which eliminates the need to save multiple components within a site. This update is exclusive to English language locales for now, but will soon be available to all users.

  • Improved Assets tables. We added a new Unassessed Assets table and updated the existing Assets table (now known as the Assessed Assets table) to display a more accurate number of the scanned assets that contribute to license usage. The new Unassessed Assets table displays discovered assets that have been assigned to a site but have not yet been assessed for vulnerabilities or policy compliance.

  • PCI report improvements. We updated the PCI Vulnerability Details, PCI Host Details, and PCI Executive Summary reports to include CVSSv3 scores for severity and compliance statuses.

    A Rapid7 AI-powered score, based on CVSSv3 scores, has also been added and is used when there are no available CVSSv2 or CVSSv3 scores from NVD. Severity and compliance statuses are dependent on the availability of CVSS scores. When scores are available, priority is assigned as follows:

    • CVSSv3
    • CVSSv2
    • AI-powered CVSSv3

  • PostgreSQL database. We upgraded the PostgreSQL database version from 15.8 to 15.12. For this upgrade to take effect, an additional restart is required after updating your Security Console.

Fixed

  • We fixed an issue in the Remediation Hub, where the asset count had previously included some assets that were not applicable for a solution in a limited number of scenarios. This fix aligns the asset numbers that are displayed for a solution in Remediation Hub with the numbers in your remediation projects.
  • We fixed an issue that caused the new Site tab to display an endless loading state.
  • We fixed an issue that caused the Back button to navigate incorrectly when accessing the new Sites configuration screens.
  • We fixed an issue that caused manually-applied updates to specify the incorrect version for Windows and Linux scan engines. Now, the specific version for both Windows and Linux scan engines is applied, regardless of your product's operating system.
  • We fixed an issue that occurred on start up when a legacy value was present in the install.properties file.
  • We fixed an issue where the Local Scan Engine version displayed as “Unknown” on the Engines page.