Improved
- SSH algorithm enumeration. SSH algorithm enumeration has been improved for non-standard ports and scans with Nmap service fingerprinting disabled.
- Policy overrides. We improved the performance of our policy override feature by applying only the latest version of an asset for a policy override that is scoped to all assets. As a result, creation and deletion actions are now more efficient.
Fixed
- We improved Cisco IOS fingerprinting, increasing check accuracy.
- We resolved some scanning issues that resulted from scan engines having too many open files during scans.
- We now prevent unused and invalid SNMP credentials from being used as "Admin" credentials.
- We fixed an issue with the automatic content update feature, which resulted in the Security Console erroneously shutting down.
- We fixed an issue where custom policies weren't able to be uploaded to the Security Console.
- We fixed a false positive in the Microsoft Windows 10 Enterprise CIS Benchmark version 2.0.0 that would occur when the WinRM lockout observation window was set to a high value.