TrustKeeper Scan Engine Update for December 29, 2020

Summary

The latest update to the TrustKeeper scan engine that powers our Trustwave Vulnerability Management product (including both internal and external vulnerability scanning) is now available. Enjoy!

New Vulnerability Test Highlights

Some of the more interesting vulnerability tests we added recently are as follows:

Atlassian

• Atlassian Confluence downloadallattachments Authenticated Path Traversal Vulnerability (CVE-2019-3398)

VMware

• VMware Identity Manager Command Injection Vulnerability (VMSA-2020-0027) (CVE-2020-4006)

Microsoft

• Microsoft Exchange Privilege Escalation Vulnerability (CVE-2018-8581) (CVE-2018-8581)

How to Update?

All Trustwave customers using the TrustKeeper Scan Engine receive the updates automatically as soon as an update is available. No action is required.