New Features:
Improvements:
- Full product containerization and migration to new versions of components and DBMS
- Completely updated Ubuntu general security requirements audit policy
- Extended OS detection has been moved to a separate process
- Added audit restart on service failure
- More accurate detection in blackbox mode taking into account the packet suffix
- Added XCCDF signatures for Windows 11
Improvements:
- Updated CLI utility
- Blocked buttons when deleting from the trash
- Implemented Docker API client for system elements
- Improved rights checks (licensing)
- Added CWE field, column, and filter in the vulnerability catalog section
- Fixed column header alignment
- Implemented extended OS detection
- Unified colors and progress bars
- Integration with new (translated) CWE feeds
- Improved reinitialization logic Feeds
- Improved vulnerability search in the CPE directory
- Added detailed logging of web vulnerabilities
Fixes:
- Fixed a crash in the reporting service
- Fixed the request for web vulnerability statistics in EASM
- Fixed host discovery optimization
- CVE/CWE scripts were revised
- Fixed history deletion
- Fixed a threat filtering error in the report
- Fixed the calculation of web vulnerability scores
- Fixed the mapping of the cweId field
- Fixed disabling unavailable policies
- Fixed a bug with searching for CVE vulnerabilities in the catalog
- Fixed the log collection script
- Fixed the alert color scheme
- Fixed some checks in XCCDF
- Fixed configuration audits for Astra Linux and RedOS
- Fixed OR logic in configuration audit policies
- Fixed the display of hidden web vulnerabilities
- Fixed sorting in configuration and packet audit reports
- Fixed resetting of WAF checkboxes in reports
- Fixed Patch status when an error occurs
- Cipher statistics calculation has been fixed
- Fixed the display of the 'n/a' status