November 1, 2023 ASM Discovery Engine Release

Attack Surface Management Discovery Engine release v1.34.0

This Attack Surface Management Discovery Engine release includes:

Vulnerability Checks

  • Added CVE-2023-4568 Vulnerability Check (PaperCut NG Unauthenticated XMLRPC Functionality)
  • Added CVE-2023-40779 Vulnerability Check (IceWarp Mail Server Deep Castle 2 Open Redirect)
  • Added Apache Hadoop YARN Remote Code Execution Vulnerability Check
  • Added CVE-2023-39598 Vulnerability Check (IceWarp Email Client Cross Site Scripting)
  • Added CVE-2023-37728 Vulnerability Check (IceWarp Webmail Server Reflected Cross Site Scripting)
  • Added CVE-2023-38646 Vulnerability Check (Metabase Remote Code Execution)
  • Added CVE-2023-39361 Vulnerability Check (Cacti SQL Injection)
  • Added CVE-2023-0126 Vulnerability Check (SonicWall Arbitrary File Read)
  • Added CVE-2023-20198 Vulnerability Check (Cisco IOS XE Software Web UI Privilege Escalation)
© Copyright Mandiant. All rights reserved
  • First Published: November 1, 2023
  • Last updated: November 2, 2023
In This Article
Related Articles
  • None
Copyright © 2020 – 2021 Your Company, LLC. All rights reserved.