January 12, 2024 ASM Discovery Engine Release

Attack Surface Management Discovery Engine release v1.42.0

This Attack Surface Management Discovery Engine release includes:

Updates to Apache Tomcat Manager detection.

Bug Fixes

  • Resolved issue where DnsRecord Entities were incorrectly being hidden when TLD resolved wildcards.

Vulnerability Checks

  • Added CVE-2023-3368 Vulnerability Check - (Chamilo - Remote Code Execution)
  • Added CVE-2023-49070 Vulnerability Check - (Apache OFBiz - Remote Code Execution)
  • Added CVE-2021-29200 Vulnerability Check - (Apache OFBiz - Remote Code Execution)
  • Added CVE-2023-51467 Vulnerability Check - (Apache OFBiz - Remote Code Execution)
  • Added CVE-2023-43177 Vulnerability Check - (CrushFTP - Remote Code Execution)
© Copyright Mandiant. All rights reserved
  • First Published: January 16, 2024
  • Last updated: February 20, 2024
In This Article
Related Articles
  • None
Copyright © 2020 – 2021 Your Company, LLC. All rights reserved.