Attack Surface Management Discovery Engine release v2025.02.13
This Attack Surface Management Discovery Engine release includes:
Vulnerability Checks
- Added CVE-2023-6021 - Ray API - Local File Inclusion
- Added CVE-2023-6020 - Ray - Arbitrary File Read
- Added CVE-2024-36412 - SuiteCRM - SQL Injection
- Added CVE-2024-23917 - JetBrains TeamCity 2023.11.3 - Authentication Bypass
- Added CVE-2024-50603 - Aviatrix Controller - Remote Code Execution
Technology Fingerprints
- Fixed false positive fingerprint for k8server
- Enchanced to capture additional variants of aviatrix controller HTTP title
- Added SuiteCRM technology fingerprint