Science & Technology

Improved performance, snappy port, spring cleaning

TL / DR: Spring cleaning is taking place, so we’ve started developing new products for the past two weeks and have been working hard to do a timely spring cleaning.

Please double check the vulnerability page

On the Vulnerability page, you can see all the findings of the entire attack surface. It includes a simple filter that allows you to specify what you want to focus on, such as level of severity, domain to check, and whether it was detected last week or last month.

Top tip:

  • Filter by the title of the vulnerability. Filter by title, such as a specific type of XSS or CVE name. This means that you can prioritize specific types of vulnerabilities and fix them quickly with your development team.
  • Bulk operation. You can now perform bulk actions against up to 500 vulnerabilities at one time. This means that you can easily change the status of a large number of vulnerabilities, such as “fixed” or “acceptable risk”.
  • Understand the API. The REST API makes it easy to access information from the vulnerability page. See this API docs.

Improved performance

  • Vulnerability as a major landing page. [脆弱性]The page collects and displays all findings from both surface monitoring and application scanning in one place. From now on, the vulnerability will be reached at login instead of the dashboard. The dashboard will be removed in a few weeks.
  • [ルートアセット]Integration of page surface monitoring settings. Menu menus to consolidate all Surface Monitoring settings into one place and evolve Scanning settings to a place focused on application scanning.[ScanningSettings]Removed the Surface Monitoring setting from the tab.
  • Snappier attack surface for customers with many open ports. Previously, customers with many open ports had slower load times. We’ve made some internal improvements to make open ports load faster.

Recently added crowdsourcing vulnerability

This is a list of all new medium, high, and severity modules recently added from the ethical hacker community. You can find a complete list of new vulnerabilities added to Surface Monitoring and Application Scanning by viewing “What’s New?”. Tools section.

  • CVE-2022-1388: F5 Big-IP iControl REST RCE
  • CVE-2022-0288 Ad Inserter <2.7.10 – Reflected Cross-Site Scripting
  • CVE-2022-29548: WSO2 Management Console XSS
  • CVE-2021-35587: Oracle Access Manager RCE
  • CVE-2022-30525 Zyxel Firewall Unauthenticated RCE

Login Get an overview of what is exposed in the attack surface.

Join our team

We hire engineers, product managers, sales and more. learn more.

Improved performance, snappy port, spring cleaning Improved performance, snappy port, spring cleaning

Back to top button