1.10.16

Changelogs for Release 1.10.16

K2Release: Morpheus XVI: 1.10.16 (5/17/21)

K2 SaaS Portal

Features:

  • Role-Based Access Control

  • Download report functionality for the following views:

    • Vulnerability views:

      • Third-party vulnerability

      • User code vulnerability

      • Container vulnerability

    • Attacks view

    • Daily report view

  • Request based whitelisting in the policy

  • HTTP connection tab in containers and pods view

Updates:

  • RBAC compatibility

  • Count section and redirection in the summary vulnerability view

  • On-premise instructions set

Fixes:

  • URL searching is not working in Blocked List

  • IP valid till not updating in Blocked List

  • Invoked methods and Encountered URL not loading

K2 Agents

Component

ChangeLogs

IntCode

  • RCE FP: updates command parser to improve separators.

  • Dynamic stats graph is back to 24 hr instead of 48 hrs

  • Minor patch in SYSTEM COMMAND event validation

  • Minor patch in API record data posting on cloud. New Features

  • Request Whitelisting policy: Specific request can also be marked as whitelist similar to API whitelisting.

  • Impacting keys and payloads are also provided in attack incidents.

  • For PHP collector extra field of cwd is introduced in file events

  • Buffer for pending events till IC process application info

Java

  • Updates HTTP Connection stats reporting

  • Resolve duplicate posting of same inbound-outbound request.

Ruby

Blocking support Ruby 3.0 support

Node

Dvna Bug Fixes

Previous1.10.19

Last updated

Was this helpful?