24-hour scan limit removed for web scans using a Scanner Appliance
Web scans running on Scanner Appliances are no longer restricted by the 24-hour maximum scan duration. This update allows longer scans to be completed without interruption, which is ideal for complex or large-scale targets that require extended assessment time.
Please note that public scan nodes will continue to enforce the 24-hour limit to ensure consistent performance and scan quality across shared environments.
We also recommend the following:
- Review and optimize your scan configurations to improve efficiency and reduce duration where possible.
- Longer scans may increase resource usage, so be sure to monitor disk and memory consumption on your Scanner Appliances accordingly.
This new capability will be available from version 3.18.0 (Revision 67) in the Scanner Appliance, which will be made available over the coming weeks.
Read about how to optimize scans reaching the 24-hour limit here.
Easier & quicker access to vulnerability details
When navigating from Unified Assets, opening a vulnerability from an asset will now display vulnerability details in a sidebar within your existing view - without redirecting you to a new page. This in-context experience allows you to quickly review and act on vulnerabilities while staying within your current workflow.
Additionally, the sidebar includes a convenient option to return to the asset view, making it easy to maintain context as you investigate vulnerabilities.
Read about how to view detailed vulnerability information in Asset Manager here.
More flexible tag rules with multi-value matching
Tag rules now support multiple ‘OR’ values for the “asset name,” “email,” and “asset type” fields. This enhancement allows you to create more flexible and powerful matching logic when defining rules, making it easier to categorize assets based on a broader range of criteria.
Automatically inherit hostname on network assets
You can now set network assets to automatically inherit their name from the hostname discovered in your last scan. This ensures that asset names always stay accurate and up-to-date over time, helping maintain a more reliable and consistent asset inventory.
When scanning in a dynamic IT environment, such as with DHCP, the hostname will be continuously updated after each scan performed. Previously, this happened automatically only on the first scan, but not on subsequent scans.
Filter by first detection in Unified Vulnerabilities
You can now filter vulnerabilities by their first detection date directly in the Unified Vulnerabilities view, across all your different assets.
This makes it easier to track when a vulnerability first appeared in your environment, helping you prioritize recent discoveries and monitor remediation timelines more effectively.
Scanner Appliance enhancements for web application scanning
The Scanner Appliance now supports web and API scan targets using .local addresses, making it easier to scan websites and APIs that are hosted on internal environments and local networks that rely on non-public domain naming.
This enhancement improves visibility into systems that were previously harder to reach, ensuring better coverage across your infrastructure.
As part of this update, cloud-based Scanner Appliances also come with improved hardware specifications, now requiring a minimum of 4 CPUs and 8 GB RAM to ensure consistent and reliable scan performance.
Filter device assets by last installed patch date
You can now filter device assets based on their last installed patch date, helping you quickly identify systems that may be missing recent updates or haven’t been restarted since a patch was applied.
This makes it easier to monitor patch compliance and take action on devices that could pose a security risk due to outdated software.
Additional enhancements
- We have fixed an issue that occurred when editing password-protected reports.
- We resolved an incorrect max severity display for some web and API assets.
- Dashboard widgets now come with a live preview of the filtered data.
- The Device Agent has received improvements to its detection method that should reduce false positives.