Nexpose Release Announcements for July 2016

Document created by S Tempest Employee on Jul 5, 2016Last modified by S Tempest Employee on Jul 27, 2016
Version 5Show Document
  • View in full screen mode

To help you protect your environment against ever-evolving security threats, Rapid7 releases coverage updates for Nexpose on a weekly basis. Product IDs and installer links are added the day of the release. This page contains detailed announcements for the most recent Nexpose coverage releases:

 


This Rapid7® Nexpose® 6.3.6 release includes:


Application enhancements | product

Improvements to how the application integrates and presents scan data, and how it performs overall, help you to manage security issues more effectively in your environment:

  • Users can now reset their passwords when using two factor authentication.
  • Assets discovered by vSphere discovery connections will no longer be removed when the remote session no longer exists. The discovery connection will attempt to reset itself and re-establish connection to the vSphere server.


Recurring coverage | content

New and updated vulnerability checks help protect your environment against the latest threats. See all the operating systems and applications covered by these updates.

 

Installer links, md5sum links, and virtual appliance links

Click here for the latest installer links, md5sum links, and virtual appliance links.

 

Product Update IDs

  • Linux 64 | Update ID: 2739898758
  • Windows 64 | Update ID: 1788203251

 


This Rapid7® Nexpose® 6.3.5 release includes:


Coverage for July Patch Tuesday exposures | content

New vulnerability checks provide up-to-date Microsoft Patch Tuesday scan coverage for July 2016. For information about all current security bulletins covered in this release, see the Microsoft Security Bulletin Summary for July 2016. Use the checks in this update to verify that the latest Microsoft patches have been applied to system assets.


Scanning enhancements | product

Better scan performance helps you to retrieve scan results more quickly with improved accuracy and more efficient use of resources:

  • We have reduced at-rest memory utilization, making more memory available for scans. Specific checks have been optimized for better memory utilization. Additionally, vulnerabilities and vulnerability solutions are no longer loaded into memory.


Recurring coverage | content

New and updated vulnerability checks help protect your environment against the latest threats. See all the operating systems and applications covered by these updates.

 

Installer links, md5sum links, and virtual appliance links

Click here for the latest installer links, md5sum links, and virtual appliance links.

 

Product Update IDs

  • Linux 64 | Update ID: 3144877223
  • Windows 64 | Update ID: 1633750378

This Rapid7® Nexpose® 6.3.4 release includes:


Application enhancements | product

Improvements to how the application integrates and presents scan data, and how it performs overall, help you to manage security issues more effectively in your environment:

  • We have added National Institute of Standards and Technology (NIST) Special Publication 800-53 controls mappings to data model version 2.0.2 of the SQL Query Export report.
  • We have addressed an issue that could occur on first-time install while loading policy content with dates with certain time zone configurations.
  • We have updated the onboarding and registration process for dashboards and timelines functionality to allow for smoother handling when switching regions.


Accuracy enhancements | content & product

Better accuracy of scan results helps you to assess your security posture and prioritize remediation more effectively:

  • We have added support for gathering network interface details on targets with net-tools 2.10-alpha or newer installed.
  • We have made improvements to Oracle Database patch fingerprinting for versions 12.1.0.2 and above in order to address false positives on machines with patched Oracle DB 12.1.0.2 installed.
  • IP Source Routing configuration on Linux platforms is now correctly evaluated to determine if the node is in a vulnerable state.


Recurring coverage | content

New and updated vulnerability checks help protect your environment against the latest threats. See all the operating systems and applications covered by these updates.

 

Installer links, md5sum links, and virtual appliance links

Click here for the latest installer links, md5sum links, and virtual appliance links.

 

Product Update IDs

  • Linux 64 | Update ID: 2413264456
  • Windows 64 | Update ID: 512392214
2 people found this helpful

Attachments

    Outcomes