September 8th, 2024
OpenRMF® Professional v2.10.03 Released!
Soteria Software today released an update to its flagship product OpenRMF® Professional! Please log into the Software & Documentation portal under the Resources link on the website and download the upgrade as soon as you can.
OpenRMF® Professional version v2.10.03 was released today. This is a feature and bug fix release. See below for the specific updates. You can also read the blog with a video attached here as well.
- Added a Checklist Dashboard
- Added a Host Scan Dashboard
- Added a POAM Raw Data Dashboard
- Added a POAM Residual Risk Dashboard
- Added a patch vulnerability chart to show status and percentages of open patch vulnerabilities
- Added export feature to Notification pages
- Added a Checklist Type report to show counts
- Added a Checklist Type by Hostname report to show checklist type and count by hostname
- Added a Checklist Type filter to System Package Vulnerabilities report screen and export
- Added the roles and group permissions on the system package dashboard and team subpackage dashboard for users
- Added “reason for update” on history listings to show the reason for the creation of that record version
- Added more details on the form for creating checklists from templates to allow adding IP, MAC, Type, Tags, and more
- Added the ability to have multiple JWTAUTHORITY settings for multiple DNS entries to point to the same installation
- Added POAM tags to the Team Subpackage area for POAM
- Added sorting by open vulnerabilities on checklist list for System Package and Team Subpackage checklist listing
- Added bulk edit Software on System Package and Team Subpackage pages
- Updated the Checklist Vulnerability chart to show by host and checklist type
- Updated Software listing XLSX export to include filter settings on data
- Updated the Compliance Report to show the actual compliance statement for sources versus “Compliance Statement” general term
- Updated the Compliance Report to show the vulnerability on the checklist for source data shown
- Updated the CCI listing with NIST 800-53 revision 5 updates
- Bug fix for large SCAP / XML / Audit Compliance file uploads via the API
- Bug fix for compliance generation with all source items are Not a Finding or Not Applicable
- Bug fix for updating the Team Subpackage Item description when moving items between Team Subpackages
- Bug Fix for updating the Hostname on Team Subpackage bulk edit checklist screen
- Bug fix for invalid XML on downloading the hostname XLSX from patch hardware listing
- Bug fix for uploading Hardware list to update tags, keep the “Automation” field as-is from initial creation
- Bug fix for POAM not showing all controls for POAM items when they are not part of the required controls to answer
- Bug fix for Team Subpackage hardware export to match columns and data from System Package hardware export
- Bug fix on various Team Subpackage pages to show checklist last updated date correctly
- Added all DISA checklist templates with their NIST 800-53 revision 5 CCI updates
- Added additional API calls and Automation Repository examples
- Updated the base images for code to include the latest DoD CA, ID, Email, and SW certificates
- Updated several 3rd party components for better vulnerability scans and fixes
More information on the software release and its availability as well as training can be found at their website www.soteriasoft.com.