UI/Feature Changes
- Added additional Tenant information and security checks for MS365
- Added NEW module for standalone CVE lookup
- Users can now input single or multiple vulnerabilities by CVE (including uploading a list in CSV format).
- Once uploaded, prospector will gather information about the CVEs from various sources, and provide recommendations on priority for remediation, attack probability from EPSS, and check the Known Exploited lists from CISA, same as with running a vulnerability scan. This allows users to leverage the recommendation engine of Prospector even if scans or vulnerabilities were gathered from other sources.
- Vulnerability "additional information" lookups for all scans now takes users to the NIST NVD instead of Vulners.com > We have found this provides for more actionable insights on the vulnerability and steps to remediation.
- The "Internal" account (when selecting Client) has been renamed to "Prospecting Account" to better reflect the intent of that account, which is to use it for one-time scans and prospective clients vs ongoing scanning for existing clients.
Known issues / limitations
- N/A
Bug fixes
- The issue with reporting MS365 scans from the Internal account has been resolved via UI changes. MS 365 scanning is only available for clients that have been created for ongoing scanning.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article