Previous versions of Release Notes can be accessed here.
ObjectSecurity OT.AI Platform v2.1.0 release adds a number of new features to help identify exploited CVEs and associated CPEs, as well as updates to existing features.
TABLE OF CONTENTS
New Feature: CISA Known Exploited Vulnerabilities (KEV) Catalog Integration
Updated Feature: Crypto Tab Deprecated or Unsafe Cryptographic Algorithm Warnings
What's Changed with This Release:
What's New:
Common Platform Enumerations (CPEs) are now detected based on the analyzed asset vendor, product, and version information.
CISA Known Exploited Vulnerabilities (KEV) Catalog has been integrated into the ObjectSecurity OT.AI Platform CVE detection mechanism.
What's Updated:
Each Binary Analysis Tab includes explanatory text to describe the purpose of each tab.
The detection of Weak Pointers now results in a binary to be scored Red.
The Crypto Tab now warns the user if certain detected cryptographic signatures indicate a deprecated or unsafe cryptographic algorithm.
The OpenAPI routes have been reformatted according to the affected data type.
Feature details
New Feature: CPE Search Support for Uploaded Analyses
With the addition of the CPE Search feature, the user may enter the asset vendor, product, and version to show a complete list of CVEs associated with each CPE search result. To use this feature, enter a vendor (optional), product (optional), and version (optional) when uploading assets for analysis. If the user enters only a vendor, the CPEs tab will search all products and versions for that vendor. If the user enters a vendor and a product, the CPEs tab will search all product versions. By this means, the user can selectively narrow down the CPE search. CPEs are displayed on the Asset Summary Panel of the Binary Analysis Page, next to the Base analysis tab.
New Feature: CISA Known Exploited Vulnerabilities (KEV) Catalog Integration
With the integration of the CISA Known Exploited Vulnerabilities (KEV) Catalog, the user now receives insights about which CVEs are known to have been exploited. This feature adds a new classification for CVEs under the Risk column. CVEs that have been exploited will be labeled "EXPLOITED" in the severity Risk score. To use this feature, upload your binaries as usual, and the results will begin showing CVEs that are identified as exploited.
Updated Feature: Analysis Descriptions
Analysis results can be viewed on the Binary Analysis Base Tab and now includes explanatory text to describe the purpose of each tab. This text explains how the displayed assessment results can be interpreted for remedial purposes.
Updated Feature: Weak Pointers Scoring
Assets that have Weak Pointers present are now scored as Red.
Updated Feature: Crypto Tab Deprecated or Unsafe Cryptographic Algorithm Warnings
The Crypto Tab warns if certain detected cryptographic signatures indicate a deprecated or unsafe cryptographic algorithm.
Updated Feature: OpenAPI Route Reformatting
The OpenAPI routes have been reformatted to start with the data type to which they apply. This change came as part of a logical restructuring of the routes available and to increase clarity about which resources were being accessed.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article