Change log of the Cyberwatch software

15.3 (2025-12-15)

Highlighted features:

• Criticalities: you can now integrate European CERT catalogs into vulnerability prioritization (preview)
• Discoveries: added ServiceNow discovery (preview)

New features:

• Agentless connections: added support for HashiCorp Vault KV v2
• Air-gapped assets: you can now import PortSwigger Burp Suite XML vulnerability reports as air-gapped assets
• API: added a route for importing air-gapped assets
• Cloud environment compliance: added new Microsoft 365 compliance rules for multi-factor authentication
• Scope:
  • Added support for Cisco Identity Services Engine devices
  • Added support for Fortinet FortiWeb devices
  • Added support for Microsoft Configuration Manager client on Windows
  • Added support for Microsoft Office 2024
  • Added support for MobaXterm on Windows

Updated features and performance improvements:

• Administration: refactored SMTP configuration form
• API: the /api/v3/users/{id} route now returns the list of accessible projects for the user
• Cloud: the wizard also offers the option to create Entra ID credentials for certificate-based authentication on Microsoft Azure or Microsoft 365
• Network targets and websites:
  • Enhanced detection of various CMS systems
  • Improved error management in case the target is unavailable
  • You can create stored credentials for the target from the creation form
• Compliance:
  • A security administrator can now ignore compliance rules
  • Updated multiple CIS Benchmarks
• Harbor: you can disable the use of the proxy for image analysis
• Integrations: UX improvements on the creation form
• MITRE ATT&CK: Cyberwatch now relies on attack techniques from ATT&CK version 18
• Users: strengthened password complexity requirements

Bugfixes:

• Agentless connections: fixed the Fortinet FortiGate device detection

15.2 (2025-11-12)

New features:

• API:
  • Compliance benchmark management is now possible
  • Introduced routes for creating an API key and retrieving connected user key information
• Scope:
  • Added support for Broadcom Brocade devices
  • Added support for Fortinet FortiSwitch devices
  • Added support for macOS 26
  • Added support for Microsoft Visual C++ Redistributable
  • Added support for Oracle Linux 10
  • Added support for SBC Mediant Audiocodes devices
  • Added support for Ubuntu 25.10

Updated features and performance improvements:

• API: implemented new routes for full compliance repository management
• Cloud: improved cloud resource loading performance
• Discoveries: you can now define scan timing for network discoveries
• Integrations: you can now retrieve technologies affected by a CVE
• Network targets and websites: improved detection of various CMS systems
• Projects: a system administrator with limited access can now download analysis scripts for adding air gap assets
• Repositories: you can now add a description to a repository
• Vulnerability and security issues encyclopedia: the search bar includes new time-based filters

Bugfixes:

• Authentication provider: fixed a problem with project association through SAML user groups
• Users: fixed an issue preventing the time zone defined in the profile from being applied correctly

15.1 (2025-10-06)

Highlighted features:

• Discoveries: Certificate Transparency discovery now offers a new option to search for neighboring organizations (preview)

New features:

• API: added a route to retrieve compliance repository information
• Compliance: added CIS Azure Kubernetes Service (AKS) Benchmark
• Details of an Asset: you can sort by date in the patch management history
• Discoveries: added a Rancher discovery
• Scope:
  • Added support for OPNsense devices
  • Added support for Trend Micro Deep Security Agent on Windows

Updated features and performance improvements:

• Cloud: CloudFormation template now ensures EKS compliance across all discovered clusters
• Compliance: CERTFR_AD analysis now takes into account sub-organizational units for domain controllers
• Projects:
  • A system administrator with limited access can now manage deployment and restart policies of their accessible projects
  • A system administrator with limited access can now manage scan policies of their accessible projects

Bugfixes:

• Cloud environment compliance:
  • Cloud EKS assets will now have AWS as the operating system
  • Fixed the script of CIS-Microsoft365-2.1.7 rule

15.0 (2025-09-29)

This version is a major release.

Highlighted features:

• Assets: add velocity indicators to track response times to vulnerabilities based on defined objectives (preview)
• UX: selecting a CVE, corrective action, security issue, compliance rule, or discovery from the list or the details of an Asset opens a side panel displaying the corresponding detailed information (preview) (preview)
• Projects: multiple improvements, including project-stored credentials, now offering system administrators with limited access the ability to add assets for all application scan modes
• UX: project activation in context is now more visible in the application (preview)
• Details of an Asset: added a map visualization of an asset and its relationships (preview)
• Cloud: support for integration with CloudFormation, to simplify the addition of your AWS environments to Cyberwatch and gain enhanced visibility across all your resources (preview)

New features:

• API: all users can now access the API
• Authentication provider: you can set a time limit before users are deactivated or deleted
• Compliance: added CIS Amazon Elastic Kubernetes Service (EKS) Benchmark
• Docker images: you can now scan Podman containers on Linux assets
• Discoveries:
  • Added AWS Organizations discoveries
  • Added Microsoft Hyper-V discoveries
• Kibana: added a new dashboard dedicated to priority vulnerabilities
• Network targets and websites: pages scanned during a target scan are now displayed on the Web pages tab of the details of an Asset
• Scope:
  • Added security advisories from Veeam Backup & Replication
  • Added support for Amazon SSM Agent on Windows
  • Added support for Debian 13
  • Added support for Erlang OTP
  • Added support for ManageEngine ADSelfService Plus
  • Added support for Rocky Linux 10

Updated features and performance improvements:

• Agentless mode connection: the SNMP device detection feature has been refactored
• API: the /api/v3/servers/{id}/cve_announcements/{cve_code} route also allows you to set a reactivation date for a vulnerability
• Cloud: UX improvements to the assistant to facilitate the use of discovery and compliance features
• Compliance:
  • Updated multiple CIS Benchmarks
  • You can define project-specific compliance repositories, allowing system administrators with limited access to manage the compliance of their assets
• Discoveries:
  • A system administrator with limited access can now create discoveries
  • Amazon ECR discoveries now rely on the AWS API
  • AWS discoveries are renamed to Amazon EC2
  • DNS and Certificate Transparency discoveries now rely on Nmap
• Docker images:
  • Failed analyses are automatically relaunched
  • Support for images with UIDs and GIDs greater than 60000
• External tools: you can specify the body format of Syslog requests
• Vulnerability encyclopedia: extension of CVE catalogs to authorities other than CERT-FR ALE and CISA KEV
• MITRE ATT&CK: Cyberwatch now relies on attack techniques from ATT&CK version 17
• Scanning engine: improved the IBM AIX equipment analysis
• Scope: improved the Veritas Netbackup support
• Stored credentials: improved endpoint support for Amazon ECR registries

Bugfixes:

• Corrective actions: fixed the Windows Package Manager support to update third-party applications
• Compliance:
  • Fixed the script of Microsoft Windows Server 2022 CIS Benchmarks rules
  • Fixed the script of rule ICS-LIN-6.6.9
• Discoveries:
  • Fixed an IP address retrieval problem for Proxmox discoveries
  • Fixed an issue with uniqueness in group relationships that occurred when automatically adding groups to their associated assets in synchronization mode

14.8 (2025-06-23)

New features:

• Scope:
  • Added security advisories from the BSI Germany
  • Added security advisories from the CERT Centre for Cybersecurity Belgium
  • Added security advisories from the CERT INCIBE Spain
  • Added security advisories from the ENISA EUVD
  • Added security advisories from the EU CSIRTs Network
  • Added security alerts and advisories from the CERT Austria
  • Added support for AlmaLinux 10
  • Added support for Broadcom RabbitMQ Server
  • Added support for Red Hat 10

Updated features and performance improvements:

• Agentless mode connection:
  • The boot date of SNMP devices is now reported
  • The SHA-512 authentication on SNMP devices is now supported
• API: modified some PUT routes to PATCH in Swagger/OpenAPI documentation
• Integrations: technologies without associated CVEs are now taken into account in corrective action integrations
• Kibana: the vulnerability modification dates are now referenced in the cve_computers index
• UX: you can now sort by project in the assets management views

Bugfixes:

• Alerts: fixed an issue with item retrieval in compliance rule alerts
• Compliance: fixed the script of rule ICS-WIN-5.1

14.7 (2025-05-14)

Highlighted features:

• Administration: introduction of a new project-based management system to distribute assets according to your organization’s specific requirements, while making administration and control of associated rights easier (preview) (preview) (preview)

New features:

• Authentication provider: added an option to deny connection requests from new SAML or OpenID Connect users
• Compliance: added CIS Windows Server 2025 Benchmark
• Scope:
  • Added support for Fedora 42
  • Added support for HPE Aruba Networking EdgeConnect devices
  • Added support for Microsoft Visual Studio
  • Added support for Puppet Agent on Windows
  • Added support for Ubuntu 25.04

Updated features and performance improvements:

• Agentless mode connection: improved the IP address detection for SNMP devices
• Agents: the installation interface now allows you to create or select an API key for adding agents
• Authentication provider: you can configure a parameter for the OpenID Connect authentication assurance level (ACR)
• Cloud: the wizard includes new options, such as the ability to automatically create an Amazon Elastic Kubernetes Service (EKS) or Azure Kubernetes Service (AKS) discovery when a cloud asset is added
• Cloud environment compliance: implemented and updated compliance rules for Microsoft Azure and Microsoft 365
• Corrective actions: improved the Windows Package Manager support to update third-party applications
• External tools: a log is now sent to the Syslog server when a vulnerability is fixed on an asset
• Stored credentials: you can authenticate using a certificate on Microsoft Entra ID

Bugfixes:

• Agentless mode connection: fixed a detection issue on Extreme Networks devices in SNMP
• Discoveries: fixed a problem with the registration of Docker images discovered during an Amazon Elastic Kubernetes Service (EKS) discovery
• Docker images: fixed an operating system detection problem in Docker images when scanning with the application’s native scanner
• Scanning engine: fixed a detection issue on Alpine Linux

14.6 (2025-04-07)

Highlighted features:

• Cloud: introduced a wizard to facilitate the use of Discoveries and Compliance features (preview)
• Cloud environment compliance: added Microsoft 365 compliance rules (preview)
• Corrective actions: added the Windows Package Manager support to update third-party applications (preview)
• Criticalities: integrated EPSS Version 4 into the vulnerability prioritization method called “3D prioritization”

Updated features and performance improvements:

• API: the /api/v3/cve_announcements route now also retrieves the vulnerabilities referenced in the CISA KEV and CERT-FR ALE catalogs
• Authentication provider: improved user experience for creating and configuring OpenID Connect or SAML providers, including an auto-suggestion function to assist in filling out attributes
• Cloud environment compliance: implemented new Google Cloud Platform compliance rules
• Discoveries: you can now report only powered-on virtual machines during a VMware vSphere discovery
• Exports: technology installation paths are now included in the patches list CSV exports
• External tools: improved error management in case the Syslog server is down
• Kibana: custom comments on a vulnerability are now referenced in the cve_announcements index
• Network targets and websites: implemented scan support for Ivanti and Palo Alto Networks network devices
• Performance: further global performance improvements for the application
• Scanning engine: improved analysis of Microsoft SQL Server applications

Bugfixes:

• Cloud environment compliance: fixed a migration issue related to updating compliance rules
• Corrective actions: you can once again deploy patches from the corrective actions page
• Ignoring policies: you can once again remove keywords when editing an ignoring policy
• Kibana: fixed an issue that could prevent security issues from being sent to Kibana
• Scanning engine: fixed detection issues on Palo Alto Networks devices

14.5.4 (2025-03-13)

This release contains critical fixes to address CVE-2025-25291 / CVE-2025-25292 / CVE-2025-25293.

14.5 (2025-02-24)

Highlighted features:

• API: new documentation interface (preview)
• Compliance: you can add a comment for a compliance rule (preview)
• Discoveries: added a Stormshield discovery (preview)

Updated features and performance improvements:

• Agentless mode connection: improved the creation of stored credentials set when adding a new connection
• Cloud environment compliance:
  • Implemented new Google Cloud Platform compliance rules
  • Improved and implemented new Microsoft Azure compliance rules
• Compliance:
  • Implemented CIS Red Hat OpenShift Benchmark
  • Improved and updated Active Directory checkpoints for CERTFR_AD analysis
• Details of a Compliance rule: you can also filter by status
• Details of a Corrective action: the related vulnerabilities tab has been removed
• Details of an Asset: you can now edit the connector of a cloud asset
• Network targets and websites: improved detection mechanisms for vulnerabilities related to directory traversal and file inclusion in web applications
• Discoveries: the project and region information can also be reported during a Google Cloud Platform discovery
• Scanning engine: improved the installed updates analysis on Windows assets
• Performance: improved search responsiveness by application

Bugfixes:

• Agentless mode connection:
  • Fixed a detection issue on SonicWall devices in SNMP
  • Fixed an application problem when adding a CyberArk Conjur connection
  • Fixed logins displaying problem on the edit form
• Compliance:
  • Fixed the script of rule ICS-WIN-4.2.1
  • Fixed the script of rule ICS-WIN-6.9
• Scanning engine:
  • Fixed on Mozilla Firefox patches versioning information
  • Fixed the Nginx application detection

14.4 (2025-01-27)

Application performance will be degraded if the machine hosting Cyberwatch has a Linux kernel lower than 4.0 (example: Red Hat 7 or CentOS 7), and a Docker version lower than 25.0. For more details on recommended configurations, please refer to the technical requirements.

Highlighted features:

• Cloud:
  • Updated Amazon Web Services compliance rules (preview)
  • Updated Google Cloud Platform compliance rules (preview)
  • Updated Microsoft Azure compliance rules (preview)
• Details of a Corrective action: added a section indicating Windows application details (preview)
• Performance: application global performance improvements

New features:

• Agentless mode connection:
  • Added a search bar to filter by asset, source, access protocol or address
  • Added a sortable column indicating the stored credential name of agentless mode connections
• Customization: you can customize the placeholders for comment sections
• Scope:
  • Added support for Alpine Linux 3.21
  • Added support for macOS 15

Updated features and performance improvements:

• API:
  • The /api/v3/assets/servers/{id} route now returns the date of first and last detection of technologies, as well as the ID of the scanning, deployment, reboot and ignoring policies assigned to the asset
  • The /api/v3/hosts and /api/v3/hosts/{id} routes now return the operating system names of discovered assets
  • The SBOM file uploading as air gap assets via the Cyberwatch API client is now supported
• Harbor and GitLab: the endpoint is now the same for the whole container scanner configurations defined in the application
• Scanning policies: the default execution frequency for Linux and Windows system metadata scans is now five days
• Scope:
  • Dynamic sending of Windows application data from the security database
  • Improved the Extreme Networks ExtremeSwitching devices support

Bugfixes:

• Alerts: fixed a problem preventing the filter selection when creating or editing an alert
• Assets rules: fixed an application problem that could occur when executing a rule applicable to multiple elements
• Compliance: fixed the script of SBP-LIN-01-002 rule
• Scanning engine:
  • Fixed a detection issue on HPE Aruba Networking
  • Fixed an analysis problem on VMware vCenter
  • Fixed an issue to detect the extended support presence on Red Hat systems
  • Fixed on Microsoft SharePoint Server (SharePoint On-Premise) patches versioning information

14.3 (2024-12-16)

Highlighted features:

• Assets inventory: the search bar now proposes finer filtering criteria for groups (preview)
• Discoveries: added a Red Hat OpenShift discovery (preview)

New features:

• Discoveries:
  • Added a Fortinet discovery
  • Added an Amazon ECR discovery
• Scope:
  • Added support for Dell EMC N4000 devices
  • Added support for Fedora 41
  • Added support for Jira
  • Added support for MikroTik CCR2004-1G-12S+2XS devices
  • Added support for OpenSUSE
  • Added support for Siemens SCALANCE XB-200 devices
  • Added support for Ubuntu 24.10
  • Added support for Windows Server 2025

Updated features and performance improvements:

• Discoveries: you can now restrict Kubernetes or OpenShift discoveries to a namespace
• Exports: the “CPE” column is added in the CSV technologies exports
• Scanning engine: improved the detection of applicative package versions on AlmaLinux

Bugfixes:

• Compliance:
  • Fixed the script of CIS-AWS-5.1 rule
  • Fixed the script of SBP-LIN-04-004 and SBP-LIN-02-005 rules
• Discovered assets: fixed a problem in the generated CSV exports, which could contain no elements at all
• Discoveries: fixed an application problem that could occur on some Cyberwatch instances during a network scan discovery
• Integrations: fixed an asset information sending problem on some compliance-related integration hook locations
• Vulnerabilities: fixed a problem where CVSS thresholds that had been configured were not taken into account

14.2 (2024-11-25)

Highlighted features:

• Docker images: image analysis in a GitLab pipeline is now possible (preview)
• Users: you can perform permission bulk edits (preview)

New features:

• API: the /api/v3/servers/{id}/export route can be used to get asset information in CycloneDX JSON or SPDX JSON SBOM format

Updated features and performance improvements:

• Agentless mode connection: the Forcepoint version 7 devices scan in SNMP is also supported
• Air gap assets: improved the detection of operating system and technologies in the SBOM files import feature as air gap assets
• Corrective actions: improvements in the presentation of corrective actions for the same technology
• Integrations: you can add an integration from the compliance rules encyclopedia, the corrective actions, the security issues encyclopedia, the vulnerability encyclopedia and the details of a corrective action
• MITRE ATT&CK: Cyberwatch now relies on attack techniques from ATT&CK version 16
• Network targets and websites: the authentication by a Selenium script in target scanning is also supported
• Scanning engine:
  • Improved the Java application detection
  • Improved the Mozilla Firefox application detection
  • Improved the Python package detection
• Users: improved the permission information displayed in the user profile

Bugfixes:

• Agentless mode connection: fixed a detection issue on Aruba and HPE devices in SNMP
• Reports: fixed a problem where filters used to generate PDF reports were not taken into account
• Repositories: fixed a displaying error on the number of rules and associated assets with a repository
• Scanning engine: fixed a detection issue on Alpine Linux

14.1 (2024-10-28)

Highlighted features:

• Network targets and websites: cookie authentication in target scanning is now supported (preview)

New features:

• Compliance: added CIS Ubuntu 24.04 LTS Benchmark
• Exports: added the package_detected_at field in the current technologies JSON export indicating the date on which the technology was first detected. This data is also present in Kibana or Google BigQuery, in the computers_packages index
• Scope:
  • Added GitLab security advisories
  • Added security advisories from the CCN-CERT Spain
  • Added security advisories from the CERT Santé France
  • Added security advisories from the CSIRT Italy
  • Added support for Cisco Business 250 and 350 devices
  • Added support for Opengear devices

Updated features and performance improvements:

• Administration:
  • The “Vulnerabilities” tab settings of the “Customization” sub-menu have been moved to the “Vulnerabilities” sub-menu
  • The “Customization” sub-menu has been refactored
• Agentless mode connection: improvements on the HPE devices detection in SNMP
• Air gap assets:
  • Improvements on the feature of SBOM import files as air gap assets
  • UX improvements and fixes to prevent the execution of a deployment and restart policy on air gap assets
• API:
  • The /api/v3/assets/servers/{id} route now returns the CPEs of packages that have them
  • The /api/v3/servers/{id}/cve_announcements/{cve_code} route can also be used to add a comment for a vulnerability
• Assets inventory: UX improvements on the customization modal
• Corrective actions: you can also filter by package type
• Dashboard: improvements on the modals and widgets displaying
• Details of an Asset: UX improvements in the “Technologies” tab for adding Docker images
• Details of a Security issue: you can now filter by payload in the list of associated assets
• Discoveries:
  • A discovery modified during its execution is now relaunched with its new configuration
  • A Harbor robot account can also be used for a Harbor registry discovery
  • Improvements on the automatic registration in agentless mode connections
  • Improvements on the Kubernetes namespace discoveries
  • You can now interrupt a discovery in progress
• Exports: you can now set a size limit for an export sent by email
• Kibana:
  • Improvements in the visualization of the CVE evolution graph
  • The “CVE Specific Dashboard” is renamed to “Vulnerability monitoring”
• Network targets and websites: you can also define URLs that will be excluded from the scan
• Repositories: the view has been refactored
• Scanning engine: improvements on the Red Hat detection to take extended support versions into account
• Scope: improved the Android support

Bugfixes:

• Agentless mode connection: fixed a retrieval problem on the system name of Stormshield devices in SNMP
• Air gap assets: fixed a sorting problem on last analysis dates
• Assets rules: fixed a problem with the selection of values in the search bar that could lead to errors in the list of asset rules
• Details of an Asset: fixed a display problem that could occur in the “Compliance” tab when checking custom rules
• Discovered assets: fixed a displaying error that may occur on the list of unregistered assets
• Discoveries: fixed an application problem that could occur during an AWS discovery
• Network targets and websites: fixed an API routes retrieval problem when scanning the Swagger/OpenAPI documentation of a target in headless mode
• Kibana: fixed a problem with the cvss_v3_access_vector field in the computers_cves index
• Scanning engine:
  • Fixed a detection issue on Firefox ESR
  • Fixed a detection issue on VMware
  • Fixed an analysis problem on F5 devices
  • Fixed an analysis problem on Java
  • Fixed analysis and detection problems on Microsoft .NET Framework and Windows

14.0 (2024-09-18)

This version is a major release.

Highlighted features:

• Agentless mode connection and Discoveries: you can create an asset or register a discovered asset representing a Kubernetes project (preview) (preview)
• Air gap assets: the SBOM SPDX 2.3 JSON, CycloneDX v1.5 JSON and CycloneDX v1.6 JSON files can be imported as air gap assets
• Assets inventory: you can add customized columns to display asset metadata (preview)
• Criticalities: integration of the CISA’s Stakeholder-Specific Vulnerability Categorization (SSVC) system into the vulnerability prioritization method called “3D prioritization” (preview) (preview)
• Docker images: Cyberwatch now allows you to scan images natively with the 5.20 version of the orchestrator base
• Vulnerability encyclopedia: the CVSS 4.0 version is now integrated throughout the application (preview)

New features:

• Compliance: you can ignore a compliance rule
• Details of an Asset: you can select the columns to display in the “Vulnerabilities” tab including a sortable column indicating the contextual score (CVSS-BTE) and another for the SSVC decision
• Details of an Asset and Details of a Vulnerability:
  • You can add a comment for a vulnerability
  • You can ignore a vulnerability until a given date
• Discoveries:
  • Added a Proxmox discovery
  • You can create a group when creating a discovery
  • You can delete groups of discovered assets that have disappeared
• Harbor: added the support for the Scanner Adapter API new version, to run the SPDX SBOM generation of Docker images right from the Harbor web interface
• Scanning policies: you can duplicate an existing policy
• Scope:
  • Added end-of-life dates for PHP 8
  • Added support for Alpine Linux 3.20
  • Added support for Aruba 7005 devices
  • Added support for Fedora 40
  • Added support for Progress Kemp LoadMaster LM-X3 devices

Updated features and performance improvements:

• Agentless mode connection:
  • The IP addresses of SNMP device can now be reported on the application
  • The weak SNMP community strings configured on the device are now reported as a Security issue
• Alerts: added a dedicated page to see the items processed when an alert was last executed
• API:
  • Added reference and security_announcement fields in the /api/v3/cve_announcements route
  • The /api/v3/cve_announcements and /api/v3/cve_announcements/{id} routes now return the CVSS v2 or v3 vector and the CVSS v4 score of CVEs
  • The asset routes have been consolidated
• Assets: improved the patching deployment management
• Assets inventory: you can now reorder table columns
• Assets rules: you can now define opposite actions on rules
• Compliance rules encyclopedia: you can now filter by group
• Details of an Asset: the subnet mask is now reported in IP addresses
• Details of a Vulnerability: the information section now displays all CVSS scores available for a CVE
• Discoveries:
  • The discovery creation view for managing discovered assets has been refactored
  • You can now perform a namespace discovery for AKS, EKS and Kubernetes
• Discoveries and Docker images: the discovered images and assets with the same hash are now linked
• Docker images:
  • Improved the shell less Docker images scanning
  • UX improvements on Docker images presentation in the Assets inventory and their details
• Exports and Reports: CSV exports and PDF reports of Security issues now indicate the issues to be fixed
• Network targets and websites: improved the technology versions detection when scanning network ports
• Scanning engine:
  • Improved and fixed the SUSE detection
  • Improved the F5 devices detection
  • Linux application paths are now reported in the application
• Scanning policies:
  • Scanning frequencies are now configured in the policy details
  • UX improvements for associating a scan script and creating a custom analysis script
• Scanning, Deployment or Reboot policies: you can now specify a time zone when creating a policy
• UX: improved the creation and edition views of groups and repositories

Bugfixes:

• Agentless mode connection:
  • Fixed a detection problem on Aruba devices in SNMP
  • Fixed a patching deployment issue that could occur on some Linux assets
  • Fixed a problem that could lead to the display of duplicate Windows patches after restarting an analysis
  • Fixed a version retrieval problem on some Cisco devices in SNMP
• Air gap assets: fixed an issue to block the rebooting script execution on air gap assets
• Compliance:
  • Fixed an evaluation problem when multiple checks are performed on a rule
  • Fixed the script of ICS-WIN-8.2.3, SBP-LIN-01-004 and SBP-LIN-01-007 rules
• Harbor:
  • Fixed a problem with scanning Docker images not supported by the application
  • Fixed an application problem that could prevent the Docker images scanning
• Network targets and websites:
  • Fixed an analysis problem on some WordPress extensions and themes
  • Fixed an API routes retrieval problem when scanning the Swagger/OpenAPI documentation of a target
  • Fixed a problem preventing a target from being scanned from a Kubernetes node
• Scanning engine:
  • Fixed a detection issue on OpenVPN
  • Fixed a detection issue on Palo Alto devices
  • Fixed an analysis or a detection problem on Microsoft .NET Framework and Windows
  • Fixed on Mozilla Firefox ESR patches versioning information

---

Table of contents

• Changelog of the base of the orchestrator
• Changelog of the Cyberwatch agent
• Changelog of the Helm Chart
• Changelog of the Podman orchestrator
• Release frequency and support lifecycle of updates