September 11, 2024 ASM Discovery Engine Release

Attack Surface Management Discovery Engine release v2024.09.11

This Attack Surface Management Discovery Engine release includes:

Vulnerability Checks

Added CVE-2024-28987 - SolarWinds Web Help Desk - Hardcoded Credential
Added CVE-2024-45195 - Apache OfBiz - Remote Code Execution
Added CVE-2024-6893 - Journyx - XML External Entities Injection (XXE)
Added CVE-2024-6670 - Progress WhatsUp Gold - SQL Injection

Technology Fingerprints

Added SolarWinds Web Help Desk Detection
Added Journyx Detection
Fingerprint Enhancements for Progress Whatsup Gold
Fixed bug resulting in inaccurate version numbers for dynamic WordPress fingerprinting

© Copyright Mandiant. All rights reserved

First Published: September 12, 2024
Last updated: May 1, 2026

In This Article

Was This Article Helpful?

How would you rate this article?

Copyright © 2020 – 2021 Your Company, LLC. All rights reserved.