v24.12.1 - 12 December 2024

This update includes changes to the internal agents. The internal scan agent’s current version is 24.12.1. The internal authentication verifier agent’s current version is 24.12.1.

New Features

• A connector for Mend SCA now available

Improvements

• Added new paths to forced browsing
• Updated the vulnerability template for the Internal Server Error vulnerability
• Improved Insecure HTTP Usage detection
• Improved retry operations to prevent JSONSerializer errors following archiving failures
• Removed support email addresses from the product
• Removed cancelled and failed scans after 90 days

Fixes

• Fixed an issue in Mulesoft integration where child organizations were not syncing properly
• Fixed an issue with ServiceNow integrations causing authentication errors by suspending the affected integrations
• Fixed an issue where JSON responses were incorrectly formatted
• Fixed an issue where scans failed with a "Failed - Agent is unavailable" error at the end of the scan
• Fixed an issue where Invicti detected vulnerabilities in multiple parameters of the same URL but didn't report them due to the vulnerability family mechanism