Invicti Enterprise On-Demand 13 Mar 2024 v24.3.0
This update includes changes to the internal agents. The internal scan agent’s current version is 24.3.0. The internal authentication verifier agent’s current version is 24.3.0.
New features
- ServiceNow Application Vulnerability Response integration is now available in the ServiceNow store
- Added the ability to force authentication verifier agent to use incognito by default on Chromium browser
New security checks
- Added detection for ActiveMQ RCE to the OOB RCE Attack Pattern (CVE-2023-46604)
Improvements
- Improved ServiceNow Vulnerability Response integration
Fixes
- Fixed the error in the API’s websites/update function
- Removed logos and brand names from the Detailed Scan Report display
- The API now correctly assigns the appropriate scan profile when updating the periods of scheduled scans
- Fixed the hyperlink to the Release Notes within the application
- Upgraded Microsoft.Owin package to version number 4.2.2
- Fixed null character error in JIRA integration when sending issues
- Fixed the system to halt subsequent tests if a scan is aborted from Jenkins
- Scan policies can now be updated with proxy passwords directly through the API
- Fixed GUI and API login dates to synchronize seamlessly
- Added Cookie Source field to the Knowledge Base Cookies screen
- The CSV export for user lists now includes all attributes that have been selected