Attack Surface Management Discovery Engine release v1.28.0
This Attack Surface Management Discovery Engine release includes:
- Added Third party Workflow to production
- Added support for variable cache TTL
Previous cache time was hardcoded to 14 days for all data sources. Now 24 hours, 48 hours, 1 week, and 2 weeks are supported. - Added Open SMTP Relay check
- Added Adobe Coldfusion access control bypass (CVE-2023-38205) vulnerability check
- Added Tenda AC11 fingerprint check
Mandiant Advantage Threat Intelligence (MATI) rates Tenda router vulnerabilities high. Mandiant Advantage Attack Surface Management (MA-ASM) does not yet have a vuln check. - Entity fingerprint logic enhancements
Added result verification for Entity identity checks. Also added additional logging to help debug fingerprint failures. - Added category to Issue details
Category is now present for inferred CVEs. - Modified MATI cache TTL
Modified MATI caching from 14 days to 7 days so that the IC-score pulled from MATI will refresh faster. - Added UniqueKeyword to Code Repository and Assessment Workflow
- Fixed Out of Scope bug
- Fixed EC2 entity detail bug
IpAddress Entities (for public IPs) are now correctly created from EC2 instance details. - Fixed typo in Azure Storage Account issue