Mondoo 11.10 is out!
ยท 2 min read
๐ฅณ Mondoo 11.10 is out! This release includes CIS benchmarks for Exchange Server 2019, improvements to the CVE and advisory UI, new resources, and more!โ
Get this release: Installation Docs | Package Downloads | Docker Container
๐ NEW FEATURESโ
Secure Microsoft Exchange Server 2019โ
Validate your Microsoft Exchange Server 2019 instance against the latest CIS benchmarks with our new policy, which contains 52 new tests to ensure that you follow best practices and security recommendations.
๐งน IMPROVEMENTSโ
Improved affected assets lists for CVE and advisoriesโ
Remediate vulnerabilities more quickly and effectively with refreshed asset tables in the CVE and advisory views, which now provide more relevant information about the vulnerable assets.
Resource updatesโ
aws.accountโ
- New
tags
field. Thanks for this contribution, @Pauti!
aws.eks.clusterโ
- New
addons
field using the newaws.eks.addon
resource. - New
iamRole
field.
gcp.project.computeServiceโ
- New
enabled
field.
googleworkspaceโ
- New
calendars
field using the newgoogleworkspace.calendar
resource.
googleworkspace.report.appsโ
- New
admin
field.
googleworkspace.userโ
- New
isDelegatedAdmin
field.
๐ BUG FIXES AND UPDATESโ
- Add the generation time in addition to the date on all compliance reports.
- Automatically enable the generated compliance evidence policy for custom compliance frameworks.
- Render check and data query markdown in compliance reports.
- Add the number of queries to the compliance report summary page.
- Fetch the latest VMware advisories that are now published by Broadcom.
- Improve the output of queries in Kubernetes policies.
- Improve reliability of the "Ensure 'Debug programs' is set to 'Administrators'" check in Windows policies.
- Improve connection error output for Google Cloud, Azure, and AWS resources.
- Improve filters on the Azure query pack to prevent failures running queries.
- Improve reliability of the CIS Amazon EKS benchmark "Ensure Network Policy is Enabled and set as appropriate" and "Ensure clusters are created with Private Nodes" checks.
- Expand the NSA PowerShell policy's "Disable and uninstall the deprecated PowerShell v2" check to work on both desktop and server Windows installations.
- More reliably fetch AWS IAM credential reports.
- More reliably fetch Azure managed identity credentials.
- Add EOL date for SLES 15 SP6 (15.6).
- Improve pagination on Firewatch pages.
- Don't displayed already fixed advisories on the advisories page.
- Fix a failure parsing directories within Dockerfiles.