Version 9.4 Release Notes

The following describe the new features and improvements introduced in RiskVision version 9.4 released on February 26, 2019.

CVSS v3.1 Support

The CVSS v3.0 Score tab in the Vulnerability Details page has been renamed to the CVSS v3 Score tab, with all instances of v3.0 within the tab being changed to v3. In addition, there will be a new CVSS v3 Version field in the tab to show which version of JSON the vulnerability is running.

Text Input Protections

Additional Cross-Site Scripting (XSS) and poor input validation protections have been applied throughout the RiskVision platform to prevent the execution of malicious scripts that have been entered into input fields. 

Direct Access to JasperReports Server

Users can now directly access the standalone JasperReports Server (e.g. http://<hostname>:8480/jasperserver-pro) via any remote machine. The hostname will vary depending on the user's machine.