Release Summary
Features and Enhancements
- IVR Deployment on SQL Server 2022
- CISA KEV Report Preview Ending
- Bugfixes
Summary
We are happy to announce the releases of BigFix Insights for Vulnerability Remediation (IVR) 3.1 and CyberFOCUS Analytics 1.1.2. These new releases include the following changes:
- Support for IVR deployment on SQL Server 2022
- CISA KEV Report preview has ended
The goal of CyberFOCUS and IVR remains the same: To help IT Operations teams prioritize, protect and prove cyber risk reduction through remediation of critical vulnerabilities and control cybersecurity risk in real time.
IVR Deployment on SQL Server 2022
- The Insights database now supports being deployed on SQL 2022, so IVR 3, which supports Rapid7, can be deployed on Windows SQL 2022.
CISA KEV Report Preview Ended
A year ago, HCL BigFix introduced the CISA KEV Report in CyberFOCUS Analytics. With this report end users could instantly tell if they had CISA KEV exposures in their computing environment, how dangerous the exposures were, and how far behind the expected remediation date they were. The standard BigFix entitlements were not enough to show a comprehensive view of the vulnerability attack surface. Therefore, BigFix has dramatically changed the CISA KEV Report and the associated content.
There is a new Known Exploited Vulnerabilities Content Pack Add On pack which adds significant, unique value to the CISA KEV report. This add-on has NEW content consisting of time-sensitive patch catalog items NOT covered by existing HCL BigFix patch catalogs. The Known Exploited Vulnerabilities Content Pack Add On pack has:
- Over 300 exclusive pieces of patch content
- Remediation for over 65% of all supported content in the CISA KEV catalog
- 24 hour target of publishing from the time of CISA KEV inclusion
Combine all this with the ability to analyze your CISA KEV coverage immediately, usually without any additional scanning or impact on the end user, and the whole CISA KEV solution value has risen considerably.
With these improvements, as of this release, the CISA KEV report will only be available to customers with the Known Exploited Vulnerabilities Content Pack Add On pack. For questions and information on how to upgrade, please reach out to your appropriate HCL BigFix License Team Member.
How to Update
WebUI will update automatically by default, unless configured otherwise. Please note that updates for WebUI Insights and WebUI IVR must be done manually via the Application Updates page on WebUI. Updating WebUI IVR will also update WebUI Insights. For more information, please see: https://help.hcltechsw.com/bigfix/11.0/webui/WebUI/Admin_Guide/c_manage_application_updates.html
Resources
- Product Page for IVR - https://www.hcl-software.com/bigfix/ivr-home
- Product Page for CyberFOCUS Analytics - hcl-software.com/bigfix/products/cyberfocus
- Documentation for IVR - https://help.hcltechsw.com/bigfix/11.0/webui/WebUI/Users_Guide/c_get_started_with_IVR.html
- IVR Requirements - https://help.hcltechsw.com/bigfix/10.0/insights/Insights/Getting_Started/c_Prerequisites_whatsnew.html
- Documentation for CISA KEV - https://help.hcltechsw.com/bigfix/11.0/lifecycle/Lifecycle/CyberFOCUS/c_cisa_kev.html
Site Versions
| Name | Version |
|---|---|
| CyberFOCUS | 28 |
| WebUI IVR | 13 |
| WebUI Insights | 23 |