January 22, 2025 ASM Discovery Engine Release

Attack Surface Management Discovery Engine release v2025.01.22

This Attack Surface Management Discovery Engine release includes:

Vulnerability Checks

Added CVE-2024-56512 - Apache NiFi - Sensitive Information Disclosure
Added CVE-2024-12856 - Four-Faith Industrial Router - Remote Code Execution
Added CVE-2024-29895 - Cacti - Remote Code Execution
Added CVE-2024-45507 - Apache OFBiz - Remote Code Execution

Technology Fingerprints

Extended the existing set of signatures in order to successfully detect additional variants (firmwares) of Four-Faith Industrial Routers.

© Copyright Mandiant. All rights reserved

First Published: January 23, 2025
Last updated: January 23, 2025

In This Article

Was This Article Helpful?

How would you rate this article?

Copyright © 2020 – 2021 Your Company, LLC. All rights reserved.