New Cortex Xpanse features and enhancements in release 2.9 (April 2025).
The table below describes the features and enhancements introduced in the Cortex Xpanse Expander 2.9 (April 2025) release.
Note
Cortex Xpanse typically upgrades customers over a three-week time frame. Contact customer success to find out your specific upgrade date.
Feature | Description |
|---|---|
CISA KEV Vulnerability Testing | Cortex Xpanse now supports Attack Surface Tests for all CISA KEV CVEs that are externally detectable, do not require authentication, and can be exploited without any risks to the availability or integrity of the running application. In all this totals over 260 different vulnerabilities known to be actively exploited in the wild, 190 of which have a CVSS score of 9.0 or higher. As with all Attack Surface Tests, these checks perform full benign exploitation of a given vulnerability to produce confirmations of exploitation with near certainty. |
Default Credential Testing | The Cortex Xpanse 2.9 release also includes roughly 40 new attack surface tests focused on the detection of applications leveraging manufacturer default credentials. These tests include checks for default credentials on a number of business operations systems as well as IT and networking devices. |
Operating System Identification | Cortex Xpanse now supports fingerprinting multiple different operating systems and version details for internet-facing applications. |
Asset Removal API | Manage your inventory more efficiently with a new API that enables you to remove IP address ranges, paid-level domains, subdomains, and certificates from your inventory, as needed. |