Release notes

New multi-framework security questionnaire

Toby Roger
Toby Roger
released Jul 17, 2024
Release notes imageNew multi-framework security questionnaire

We’ve developed a Multi-Framework Security Questionnaire that comprehensively maps to both ISO 27001:2022 and NIST CSF 2.0, and it is now available to all customers in the questionnaire library. This dual-standard approach offers a holistic view of a third party’s security posture, ensures robust incident response and recovery plans, and demonstrates a commitment to high security standards. We're excited to roll out even more questionnaires covering global and local regulations in coming releases.

Detection of regreSSHion (CVE-2024-6387)

CVE-2024-6387 is a high-severity vulnerability in OpenSSH servers that, if exploited, facilitates Remote Code Execution with full root privileges (CVSS 8.1). This will raise a verified vulnerability and the high severity risk “Vulnerable to CVE-2024-6387 (OpenSSH regreSSHion Remote Code Execution)“.

Detection for polyfill.io inclusions 

Recently the polyfill.io domain has taken new ownership. This has presented a new supply chain risk because they host the CDN for the polyfill JavaScript package. This will raise a new informational risk called "Polyfill.io or Polyfill.com Discovered"

Summary page added for Subsidiaries

For BreachSight plans that include subsidiaries, we’ve added a Subsidiary Summary page to allow you to view the security posture of your subsidiaries in more detail, including category breakdowns and geolocation details. To learn more see What is the subsidiary summary page.

Other improvements

  • This release includes a number of bug fixes
  • Check icon
  • Check icon
  • Check icon
  • Check icon
  • Check icon
Book a free demo
View all release notes

UpGuard Release Notes

Learn about new features, changes, and improvements to UpGuard.
Send security questionnaires to vendors using the API
UpGuard logo
Send security questionnaires to vendors using the API
Abstract image background

Send security questionnaires to vendors using the API

Send security questionnaires to vendors using the API
Toby Roger
August 28, 2024
Expanded categorization of attack surface risks
UpGuard logo
Expanded categorization of attack surface risks
Abstract image background

Expanded categorization of attack surface risks

Expanded categorization of attack surface risks
Toby Roger
August 15, 2024
New SIG 2024 and DPDP Act Questionnaires
UpGuard logo
New SIG 2024 and DPDP Act Questionnaires
Abstract image background

New SIG 2024 and DPDP Act Questionnaires

New SIG 2024 and DPDP Act Questionnaires
Toby Roger
July 31, 2024
Customize notifications for critical vendor incidents and news
UpGuard logo
Customize notifications for critical vendor incidents and news
Abstract image background

Customize notifications for critical vendor incidents and news

Customize notifications for critical vendor incidents and news
Toby Roger
July 3, 2024
Configure vulnerability notifications by CVSS severity
UpGuard logo
Configure vulnerability notifications by CVSS severity
Abstract image background

Configure vulnerability notifications by CVSS severity

Configure vulnerability notifications by CVSS severity
Toby Roger
June 19, 2024
Improved classification for Identity Breaches
UpGuard logo
Improved classification for Identity Breaches
Abstract image background

Improved classification for Identity Breaches

Improved classification for Identity Breaches
Toby Roger
June 4, 2024
View all release notes
UpGuard customer support teamUpGuard customer support teamUpGuard customer support team

See UpGuard In Action

Book a free, personalized onboarding call with one of our cybersecurity experts.
Contact sales
Free demo
Free instant security score

How secure is your organization?

Request a free cybersecurity report to discover key risks on your website, email, network, and brand.
  • Check icon
    Instant insights you can act on immediately
  • Check icon
    Hundreds of risk factors including email security, SSL, DNS health, open ports and common vulnerabilities
Free score
Website Security scan resultsWebsite Security scan rating
UpGuard logo
UpGuard is a complete third-party risk and attack surface management platform.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Contact sales
Free trial
Products
Tools
Company
Insights
Products
Compare
Solutions
Company
Insights
© UpGuard, Inc.
Research GuidelinesPlatform Terms & ConditionsWebsite Terms & ConditionsPrivacyCookies