Version 13.03.00 Release Notes

Summary: A high-level overview of the changes/updates included in Ivanti Neurons Version 13.03.00, released on December 2, 2022.

The Ivanti Neurons platform version 13.03.00 update includes the following features and enhancements:

For assistance with using our new features, obtaining feature documentation, and/or scheduling training, please contact your Customer Success account manager directly.

List View Enhancements

  • Combined Asset and Finding Exports - Host Findings and Application Findings list views now let you combine fields from the “Asset Options” and “Findings Options” into one single sheet. This option is available for XLSX and CSV exports.
  • New System Filters - The filter “Billbug Lotus Blossom” was added, allowing users to filter assets and findings by associated CVEs or find the CVEs quickly on the Vulnerability KB Vulnerabilities page.
  • System Filter Loading Spinners - Users may see loading icons on the system filter cards as the platform attempts to load the counts of assets and findings impacted by each system filter. If the system has yet to query for the counts, users will see a bigger spinner instead of small spinners next to the icons. This change reduces the number of simultaneous queries to the API.

Integrations

  • Sonatype Nexus Lifecycle Enhancements - Users can now choose Security, License, Quality, and Other type findings for the OSS Sonatype Nexus Lifecycle scanner. The new finding types will appear in the Application Findings with an option to filter each. A new scanner specific field was also added to enable users to filter by the Policy Name associated to the Security, License, Quality, or Other type of findings. For more information on how to set up the connector, visit the article Nexus Lifecycle Connector User Guide.
  • New Tenable.io Nessus Scanner-Specific Fields - The fields “Nessus Recent Scan Name” and “Nessus Recent Policy” have been added to the Host and Host Findings as columns, exportable fields, filters, fields in Finding Details, and Group By options.
  • BurpSuite Deep Link - The Application Findings Details will now shown a “Deep Link” to the Portswigger site under the Scanner-Specific Information section.
  • New Crowdstrike FalconSpotlight Fields - The new scanner-specific fields "FalconSpotlight Remediation ID", "FalconSpotlight Remediation URL", "FalconSpotlight Remediation Title", "FalconSpotlight Remediation Reference", and "FalconSpotlight Remediation Action" convey information about potential fixes for vulnerabilities. The fields have been added to the Host Findings page as columns, exportable fields, filters, fields in Finding Details, and Group By options.

Notifications

  • New Medium and Low Findings - Notifications for new open Medium and Low findings have been added. Users can choose notifications based either on the finding VRR or Severity scores.

Dashboards

  • KPI Link Enhancements - Any KPI that filters a list view now support the link regardless of its Asset Type configuration. If the KPI shows data for all asset types, clicking the KPI yields a mouseover with links to both host and application data. Additionally, all clickable KPIs now detect a hovering mouse pointer and turn blue, indicating the numbers are interactive.
  • No Data States - For widgets on the Executive, SLA, and Prioritization dashboards, widgets now follow a new standard for indicating that they have no data to show. Users should note that numerical counts will be shown as “0” instead of “-”.

Fixed Issues

  • Private filters can now be shared when the filter bar is collapsed.
  • When displayed in the Finding Details, URLs within finding descriptions will now visually indicate if they are clickable.
  • New logic has been added for fingerprinting a host’s operating system. This logic handles cases where multiple operating systems have been reported on the same date, or the last discovered on date is unavailable for the host.
  • Hourly connectors will now be rescheduled to run again on the same day if they fail.
  • Issues with fingerprinting Palo Alto Xpanse Expander assets have been resolved.
  • List view menus should appear under the “More” drop-down for users who shrink the browser window.
  • When the “More” menu appears on a page showing assets or findings, the Tags menu will now show up under “More” once the browser window becomes small enough.
  • The Ivanti Neurons ITSM ticketing connector should now pull 100 records at a time from the Customer Fetch API.
  • New ITSM tickets should now be created successfully and included any attachments.
  • Users will see less of a delay when clicking the checkboxes next to list view rows or moving columns.
  • Updates to the groups on large clients will now complete successfully, ensuring that all groups show on the Groups page and within the playbook rule creation dialogue.
  • Checkboxes in the Show Columns menu will now be completely visible.
  • The JIRA ticketing connector can now remove a due date from a ticket when the due date is removed from the linked finding.
  • Users must now supply Ticket Sync States before saving or updating a JIRA connector configuration.
  • Users can now submit new workflow requests when OR filters are applied.
  • If a playbook rule filter contains an OR, the Filters pop-up will no longer show parts of that OR filter within the Rule-Enforced Filter section.
  • While uploading files, users should no longer see the screen flickering between the current upload and a completed upload.
  • The CMDB “Status” field has been added back to Hosts Details under the CMDB section.
  • When editing the configuration for a BMC Remedy connector, users should no longer see previously deleted values for “Summary” and “Description”.
  • The Sonatype Nexus connector should now successfully ingest “Security” type application findings and accurately identify empty assets.

Known Issues

  • If users still see deleted findings within the list view, they should try to submit a second delete job to resolve the issue. Previously, users had to work with their Customer Success manager to resolve issues with failed delete jobs.

End of Life Notices

  • Widgets under the Q3 2022 EOL category will no longer be available within the platform. For more information, visit the article End-of-Life (EOL) Communication - Q3 2022 EOL Widgets. Note that “Top 50 High-Impact Unique Findings” has been moved to the Q4 2022 EOL list and will be deprecated in a future release.
  • Over the next few releases, efforts to remove the fields from “Discovered On” and “Last Found On” from the platform will continue. The list view columns, detail pane, filters, export templates, and will all be removed during this time. Generic upload mapping for these fields were removed in this release. The article Status Date Fields Explained was previously published to help with understanding of these fields.