Nexpose release notes - November 2014

Document created by mglinski Employee on Dec 8, 2014
Version 1Show Document
  • View in full screen mode

To help you protect your environment against ever-evolving security threats, Rapid7 releases coverage updates for Nexpose on a weekly basis. Product IDs and installer links are added the day of the release. This page contains detailed announcements for the most recent Nexpose coverage releases:


      This Rapid7® Nexpose® 5.11.8 release contains the following improvements:                                              

  • application improvement
  • recurring coverage

             

Application improvement | product

Improvements to how the application integrates and presents scan data, and how it performs overall, help you to manage security issues more effectively in your environment:

  • An issue that prevented scanning with Scan Engines with low memory capacity has been resolved.

                                              

Recurring coverage | content

                                               New and updated vulnerability checks help you protect your environment against the latest threats. See all the operating systems and applications covered by these updates.                                          

Coming soon!

An improved, comprehensive view of your vulnerabilities is coming soon. Nexpose will start to merge the latest vulnerability results over multiple scans in the Web interface and in reports. For example, if you modify your site's scan template to check for a zero-day vulnerability and run a scan, the zero-day vulnerability results will be merged into a consolidated view. You will continue to be able to view the results from a specific scan, such as the most recent one. This improvement may impact your risk scores and the amount of vulnerabilities displayed in the Web interface and in reports. We will keep you posted on the ship date and additional details as we get closer to launch!To learn more about this change, open the Welcome to Help page of the Nexpose Help, and open the link from the Coming soon! item in the What's new in Help? box.

Installer links, md5sum links, and virtual appliance links

Click here for the latest installer links, md5sum links, and virtual appliance links.

FAQ

For details about restarting Nexpose after updating and other update information, see Nexpose release FAQ.

Product Update IDs

  • Linux 64 | Update ID: 2039077976
  • Windows 64 | Update ID: 3734842974

    

Content update

  • Update ID:  492502059

              


   This Rapid7® Nexpose® 5.11.7 release contains the following improvements:                                            

  • application improvements                                           

                                                                                                       

Application improvements | product

Improvements to how the application integrates and presents scan data, and how it performs overall, help you to manage security issues more effectively in your environment:

  • An issue introduced in the November 19, 2014, product update, which prevented scheduled scans from resuming or restarting after exceeding the maximum scan duration and pausing, has been resolved.

                                                                                                   

Coming soon!

An improved, comprehensive view of your vulnerabilities is coming soon. Nexpose will start to merge the latest vulnerability results over multiple scans in the Web interface and in reports. For example, if you modify your site's scan template to check for a zero-day vulnerability and run a scan, the zero-day vulnerability results will be merged into a consolidated view. You will continue to be able to view the results from a specific scan, such as the most recent one. This improvement may impact your risk scores and the amount of vulnerabilities displayed in the Web interface and in reports. We will keep you posted on the ship date and additional details as we get closer to launch!To learn more about this change, open the Welcome to Help page of the Nexpose Help, and open the link from the Coming soon! item in the What's new in Help? box.

Installer links, md5sum links, and virtual appliance links

Click here for the latest installer links, md5sum links, and virtual appliance links.

FAQ

For details about restarting Nexpose after updating and other update information, see Nexpose release FAQ.

Product Update IDs

  • Linux 64 | Update ID: 1396138541
  • Windows 64 | Update ID: 2028063686

 

Content update

  • Update ID:  5186314

           


   This Rapid7® Nexpose® 5.11.6 release contains the following improvements:                                        

  • application improvements                                       

                                                                                                   

Application improvements | product

Improvements to how the application integrates and presents scan data, and how it performs overall, help you to manage security issues more effectively in your environment:

  • An additional update for November 19, 2014, fixes an issue in the earlier release that caused Security Consoles with large numbers of sites to go into maintenance mode after startup.

                                                       

Recurring coverage | content

                                         New and updated vulnerability checks help you protect your environment against the latest threats. See all the operating systems and applications covered by these updates.                                    

Coming soon!

An improved, comprehensive view of your vulnerabilities is coming soon. Nexpose will start to merge the latest vulnerability results over multiple scans in the Web interface and in reports. For example, if you modify your site's scan template to check for a zero-day vulnerability and run a scan, the zero-day vulnerability results will be merged into a consolidated view. You will continue to be able to view the results from a specific scan, such as the most recent one. This improvement may impact your risk scores and the amount of vulnerabilities displayed in the Web interface and in reports. We will keep you posted on the ship date and additional details as we get closer to launch!To learn more about this change, open the Welcome to Help page of the Nexpose Help, and open the link from the Coming soon! item in the What's new in Help? box.

Installer links, md5sum links, and virtual appliance links

Click here for the latest installer links, md5sum links, and virtual appliance links.

FAQ

For details about restarting Nexpose after updating and other update information, see Nexpose release FAQ.

Product Update IDs

  • Linux 64 | Update ID: 484220949
  • Windows 64 | Update ID: 3438705705

Content update

  • Update ID:  5186314

       


   This Rapid7® Nexpose® 5.11.5 release contains the following improvements:                                    

  • coverage improvements
  • application improvements

   

Coverage improvements |  content & product

New coverage expands your visibility into assets and threats in your environment:

  • Coverage has been added for Microsoft Security Bulletin MS14-068 and the updated patch for MS14-066.
  • Coverage has been added for specific vulnerabilities on Hikvision Digital Video Recorder (DVR) devices. For more information see R7-2014-18.

Application improvements | product

Improvements to how the application integrates and presents scan data, and how it performs overall, help you to manage security issues more effectively in your environment:

  • The API guide now includes a note explaining how to correctly use the range and host elements when creating a site. Understanding what data each of these elements accepts ensures better results and fewer errors with the Site API. The note appears with the SiteSaveRequest API and the Site DTD.
  • The Next Scan date now appears in the Site Summary page after being temporarily removed by an issue in the November 12, 2014 release.

                                    

Recurring coverage | content

New and updated vulnerability checks help you protect your environment against the latest threats. See all the operating systems and applications covered by these updates.                                

Coming soon!

An improved, comprehensive view of your vulnerabilities is coming soon. Nexpose will start to merge the latest vulnerability results over multiple scans in the Web interface and in reports. For example, if you modify your site's scan template to check for a zero-day vulnerability and run a scan, the zero-day vulnerability results will be merged into a consolidated view. You will continue to be able to view the results from a specific scan, such as the most recent one. This improvement may impact your risk scores and the amount of vulnerabilities displayed in the Web interface and in reports. We will keep you posted on the ship date and additional details as we get closer to launch!To learn more about this change, open the Welcome to Help page of the Nexpose Help, and open the link from the Coming soon! item in the What's new in Help? box.

Installer links, md5sum links, and virtual appliance links

Click here for the latest installer links, md5sum links, and virtual appliance links.

FAQ

For details about restarting Nexpose after updating and other update information, see Nexpose release FAQ.

Product Update IDs

  • Linux 64 | Update ID: 2948736624
  • Windows 64 | Update ID: 2316993593

Content update

  • Update ID:  5186314

       This Rapid7® Nexpose® 5.11.4 release contains the following improvements:                              

  • Patch Tuesday checks
  • accuracy improvements
  • scanning improvements
  • application improvements

November Patch Tuesday checks | content

New vulnerability checks provide up-to-date Microsoft Patch Tuesday scan coverage for November 2014. For information about all current security bulletins covered in this release, see the Microsoft Security Bulletin Summary for November 2014. Use the checks in this update to verify that the latest Microsoft patches have been applied to system assets.These checks help you determine where new risks are located in your environment, allowing you to prioritize what needs to be remediated and help minimize risk.

Accuracy improvements |  content & product

Better accuracy of scan results helps you to assess your security posture and prioritize remediation more effectively:

  • Coverage has been improved for vulnerabilities reported in Microsoft Security Bulletin MS13-031.
  • The application now offers coverage for assets running SNMP over TCP only.

Scanning improvements |  content & product

Better scan performance helps you to retrieve scan results more quickly with improved accuracy and more efficient use of resources:

  • The existing payment card industry (PCI) audit scan template has been renamed to PCI ASV external audit to clarify that it is intended for external use by Approved Scanning Vendors. A new PCI internal audit template has been added for organizations to use for their own internal scans.
  • We have corrected an issue that caused excessive resource use with SNMP checks.

Application improvements | product

Improvements to how the application integrates and presents scan data, and how it performs overall, help you to manage security issues more effectively in your environment:

  • The following reports have been updated to improve translations for Japanese, Korean, and Chinese languages:
    • Audit Report
    • Baseline Comparison
    • Executive Overview
    • Report Card
    • Remediation Plan
    • PCI Executive Summary
    • PCI Attestation of Compliance
    • PCI Host Details
    • PCI Vulnerability Details
  • An issue that caused the Defined Asset count on the Site Summary page to always display 0 has been resolved. The defined asset count will now correctly reflect the number of total scan targets configured for the site.
  • The Site Summary page now loads significantly faster in cases where large numbers of credentials are used.
  • We have addressed an issue where assets that were historically part of a dynamic asset group, and are no longer part of the group, were incorrectly included in the report scope for non-trending reports.
  • When configuring a report that is filtered by scans, you will now see more than 10 scans because an issue with the pagination controls for the scan table has been corrected.

Recurring coverage | content

New and updated vulnerability checks help you protect your environment against the latest threats. See all the operating systems and applications covered by these updates.

Coming soon!

An improved, comprehensive view of your vulnerabilities is coming soon. Nexpose will start to merge the latest vulnerability results over multiple scans in the Web interface and in reports. For example, if you modify your site's scan template to check for a zero-day vulnerability and run a scan, the zero-day vulnerability results will be merged into a consolidated view. You will continue to be able to view the results from a specific scan, such as the most recent one. This improvement may impact your risk scores and the amount of vulnerabilities displayed in the Web interface and in reports. We will keep you posted on the ship date and additional details as we get closer to launch!-----

Installer links, md5sum links, and virtual appliance links

Click here for the latest installer links, md5sum links, and virtual appliance links.

FAQ

For details about restarting Nexpose after updating and other update information, see Nexpose release FAQ.

Product Update IDs

  • Linux 64 | Update ID: 870360082
  • Windows 64 | Update ID: 4016097654

Content update

  • Update ID: 206917688

 


  

This Rapid7® Nexpose® 5.11.3 release contains the following improvements:                   

  • coverage improvements
  • accuracy improvements
  • application improvements

Coverage improvements |  content & product

New coverage expands your visibility into assets and threats in your environment:

  • The application now offers coverage for the following Cisco/Tandberg TelePresence vulnerabilities: CVE-2011-2577, CVE-2013-3377, and CVE-2013-3378.

Accuracy improvements |  content & product

Better accuracy of scan results helps you to assess your security posture and prioritize remediation more effectively:

  • Coverage has been improved for vulnerabilities reported in Microsoft Security Bulletins MS14-036, MS13-091, MS13-054, and  MS12-081.
  • Detection of the Bash Shellshock-related vulnerabilities CVE-2014-7186 and CVE-2014-7187 has been made more accurate to reduce false positives on HP iLO and certain other devices.
  • A subset of rules of the CIS Cisco IOS 15 policy have been updated to support Cisco IOS 15.0. In addition, SNMP rules in this policy have been updated to reduce false positives.

Application improvements | product

Improvements to how the application integrates and presents scan data, and how it performs overall, help you to manage security issues more effectively in your environment:

  • The Reporting Data Model includes new information to expand your query options and reporting capabilities related to PCI reports:
    • Additional service information
    • Descriptions for automatic pass or fail vulnerabilities
    • PCI ASV adjusted CVSS score on vulnerabilities
    • PCI ASV Special Notes
  • We have strengthened the encryption on communication between the Security Console and the Scan Engine.
  • New installations of consoles and engines will have improved RSA encryption strength. (4096 bits up from 2048 bits, SHA-2 512 bits up from SHA-1).
  • FIPS mode, which provides FIPS-certified encryption for  Security Console communication,  now supports TLSv1.2.
  • Formatting adjustments have been made to the Korean, Japanese, and Chinese versions of the following reports: Risk Scorecard, Policy Compliance Status, Top 10 Assets by Vulnerabilities, Top 10 Assets by Vulnerability Risk, Top Remediations, Top Remediations with Details, and Vulnerability Trends.

Recurring coverage | content

New and updated vulnerability checks help you protect your environment against the latest threats. See all the operating systems and applications covered by these updates.               

Coming soon!

An improved, comprehensive view of your vulnerabilities is coming soon. Nexpose will start to merge the latest vulnerability results over multiple scans in the Web interface and in reports. For example, if you modify your site's scan template to check for a zero-day vulnerability and run a scan, the zero-day vulnerability results will be merged into a consolidated view. You will continue to be able to view the results from a specific scan, such as the most recent one. This improvement may impact your risk scores and the amount of vulnerabilities displayed in the Web interface and in reports. We will keep you posted on the ship date and additional details as we get closer to launch!

Installer links, md5sum links, and virtual appliance links

Click here for the latest installer links, md5sum links, and virtual appliance links.

FAQ

For details about restarting Nexpose after updating and other update information, see Nexpose release FAQ.

Product Update IDs

  • Linux 64 | Update ID: 1410137246
  • Windows 64 | Update ID: 1378048267

Content update

  • Update ID: 1036737981

Installer links, md5sum links, and virtual appliance links

Click here for the latest installer links, md5sum links, and virtual appliance links.


 

Attachments

    Outcomes