Skip to main content

Mondoo 11.10 is out!

ยท 2 min read
Tim Smith
Mondoo Core Team

๐Ÿฅณ Mondoo 11.10 is out! This release includes CIS benchmarks for Exchange Server 2019, improvements to the CVE and advisory UI, new resources, and more!โ€‹

Get this release: Installation Docs | Package Downloads | Docker Container

๐ŸŽ‰ NEW FEATURESโ€‹

Secure Microsoft Exchange Server 2019โ€‹

Validate your Microsoft Exchange Server 2019 instance against the latest CIS benchmarks with our new policy, which contains 52 new tests to ensure that you follow best practices and security recommendations.

Exchange Server 2019 Checks

๐Ÿงน IMPROVEMENTSโ€‹

Improved affected assets lists for CVE and advisoriesโ€‹

Remediate vulnerabilities more quickly and effectively with refreshed asset tables in the CVE and advisory views, which now provide more relevant information about the vulnerable assets.

Affected Assets Table

Resource updatesโ€‹

aws.accountโ€‹

  • New tags field. Thanks for this contribution, @Pauti!

aws.eks.clusterโ€‹

  • New addons field using the new aws.eks.addon resource.
  • New iamRole field.

aws.vpc.routetableโ€‹

  • New associations field using the new aws.vpc.routetable.associations resource.

gcp.project.computeServiceโ€‹

  • New enabled field.

googleworkspaceโ€‹

  • New calendars field using the new googleworkspace.calendar resource.

googleworkspace.report.appsโ€‹

  • New admin field.

googleworkspace.userโ€‹

  • New isDelegatedAdmin field.

๐Ÿ› BUG FIXES AND UPDATESโ€‹

  • Add the generation time in addition to the date on all compliance reports.
  • Automatically enable the generated compliance evidence policy for custom compliance frameworks.
  • Render check and data query markdown in compliance reports.
  • Add the number of queries to the compliance report summary page.
  • Fetch the latest VMware advisories that are now published by Broadcom.
  • Improve the output of queries in Kubernetes policies.
  • Improve reliability of the "Ensure 'Debug programs' is set to 'Administrators'" check in Windows policies.
  • Improve connection error output for Google Cloud, Azure, and AWS resources.
  • Improve filters on the Azure query pack to prevent failures running queries.
  • Fix missing check counts in the asset check overview.
  • Improve reliability of the CIS Amazon EKS benchmark "Ensure Network Policy is Enabled and set as appropriate" and "Ensure clusters are created with Private Nodes" checks.
  • Expand the NSA PowerShell policy's "Disable and uninstall the deprecated PowerShell v2" check to work on both desktop and server Windows installations.
  • More reliably fetch AWS IAM credential reports.
  • More reliably fetch Azure managed identity credentials.
  • Add EOL date for SLES 15 SP5 (15.5).