Soteria Software Press Release

June 13th, 2024

OpenRMF® Professional v2.10.01 Released!

Soteria Software today released an update to its flagship product OpenRMF® Professional!


OpenRMF® Professional version v2.10.01 was released today. This upgraded release brings some great new features such as the improved ability to upload combined CKL checklist files as well as handle checklists with site and instance web/database/application information better. See below for the specific updates:


  • Added a feature to allow uploading a combined CKL file (1 host, many STIG types) to create checklists
  • Added a feature to allow Web, Database, or Application (ASD) Checklists to be unique based on hostname, checklist type, web or database, site, and instance entries
  • Updated all “select all” checkboxes to ensure there is at least one item selected on bulk operations in lists
  • Added a Checklist Vulnerability Pie Chart report
  • Added a note on deleting locked checklists
  • Added Tags on the POAM entries in the system package
  • Added a paperclip icon to show evidence on POAM entries and Compliance Statements is available
  • Added a detailed Compliance export to show controls, source, status, CCI, statement, details, and comments
  • Added additional bulk POAM fields to bulk edit Mitigation Statements, Resources Required, Tags
  • Added a search field on bulk POAM edit to filter by vulnerability Id, plugin Id, Security Check or CCI
  • Added the US Army and US Air Force eMASS POAM export, which is different than the US Navy eMASS POAM export
  • Added delete checklist help screens
  • Bug fix for large SCAP / XML / Audit Compliance file uploads via the API
  • Bug fix on deleting hardware correctly based on case insensitive hostname
  • Bug fix to allow showing all Templates even if you have no other permissions on System Packages or Team Subpackages
  • Bug fix on the dashboard that duplicated drop down listings when you sort the table by vulnerability type
  • Bug fix uploading software listings to update all data
  • Bug fix uploading a new total CKL file not updating the version and release data properly
  • Bug fix on POAM screen showing “Create POAM” when only the status filter was being used and showed no results
  • Fixed spelling mistakes on help pages and some other screens
  • Updated the base images for code to include the latest DoD CA, ID, Email, and SW certificates


More information on the software release and its availability as well as training can be found at their website www.soteriasoft.com.