Attack Surface Management Discovery Engine release v2024.04.04
This Attack Surface Management Discovery Engine release includes:
- Implemented Issue configuration changes to support Mandiant Advantage Attack Surface Management (MA-ASM) platform feature. This includes the addition of Technology and Port violation policies.
Bug Fixes
- Fixed bug causing missing OpenSSH inferred Issues
- Fixed bug causing missing Node JS Error page detection
- Fixed bug causing missing Yandex Metrica - Cookies Match detection
- Fixed bug causing some scans to run multiple times and not complete
- Re-enabled Check Domain Registration Availability task for domain Entities
Vulnerability Checks
- Added CVE-2021-44529 - Ivanti - Endpoint Manager Cloud Service Appliance - Remote Code Execution Active Check
- Added CVE-2019-7256 - Linear eMerge - Remote Code Execution Active Check
- Added CVE-2024-21410 - Passive Vulnerability Check - Microsoft Exchange Server - Elevation of Privilege
Technology Fingerprints
- Added FortiClient Endpoint Management Server Detection