Page Comparison

Description: Fixed bug in AWS Network Firewall when “vpc.id” property is not unique over regions in Compliance Engine.
Case ID: IN-3213
Known limitations: N/A
Affected Components:

Description: Fixed bug in Azure Storage Account in Table Storage service.
Case ID: IN-2958
Known limitations: N/A
Affected Components:

Description: Added support for ‘certificateOptions.certificateTransparencyLoggingPreference’ property in AWS ACM Certificate in Compliance Engine and Protected Assets.
Case ID: DFR-2107
Known limitations: N/A 
Affected Components: 

Description: Added support for ‘Tag’ property in AWS ECR Repository in Compliance Engine and Protected Assets.
Case ID: DFR-2260
Known limitations: N/A 
Affected Components: 

Description: The first release of the LGPD regulation for AWS ruleset, K8S rule deprecation. A complete list can be found here.
Case ID: IN-3881, DFR-2302
Known limitations: N/A 
Affected Components: 

Description: remove ReadOnlyAccess permission from serverless CloudFormation Template, and replace it with strict permissions

cloud_formation template has been changed. the new version: 24
Case ID: PROT-1293
Known limitations: N/A 
Affected Components: 

Description: Fixed an internal FSP python issue

FSP has been changed. the new version: 1.5.87
Case ID: PROT-1206
Known limitations: N/A 
Affected Components: 

Description: Improve findings email and SNS integrations

• change email sender to do-not-reply@checkpoint.com

• change subject to the following format: CloudGuard Finding Detected - {Finding source} : {Rule title} . for example: CloudGuard Finding Detected - Compliance Engine: Avoid the use of the 'root' account

Case ID: DFT-1864
Known limitations: N/A 
Affected Components: 

Description: Added Support for AWS Unified Onboarding as a Terraform provider resource.
Case ID: PLAT-2998
Known limitations: N/A 
Affected Components: 

Description: New GCP rules. A complete list can be found here.
Case ID: IN-3774, DFT-1797
Known limitations: N/A 
Affected Components: 

Description: Fixed bug in AWS generic builder for Compliance engine. Couldn't run GSL assessment on two entities with the same id in different regions.
Case ID: IN-3806
Known limitations: N/A
Affected Components:

Description: Added support for ‘Tags’ property in AWS Kinesis Firehose in Compliance engine & Protected Assets.
Case ID: DFR-2262
Known limitations: N/A
Affected Components:

Description: Added support for 'Parameters' property in Azure MySQL DB Flexible Server in compliance engine and protected assets.
Case ID: DFR-1800
Known limitations: N/A
Affected Components:

Description: Extended the compliance engine model of Azure Network Security Group:

• Added the following properties: inboundSecurityRules, defaultInboundSecurityRules, outboundSecurityRules, defaultOutboundSecurityRules

• Contains the network security rules information in a new model.

• Will be used to reduce the entity size in future releases.

Case ID: IN-3136
Known limitations: N/A
Affected Components:

Description: Fixed an issue with tags data fetching.
Case ID: DFT-1871
Known limitations: N/A
Affected Components:

Description: Fixed an issue with ‘IsProtected’ value in AWS Security Group and Azure Network Security Group entities.
Case ID: IN-1429
Known limitations: N/A
Affected Components:

Description: Updating Intelligence rules
Case ID: IN-3749
Known limitations: N/A
Affected Components:

Container Registry Scanning - 15:00 UTC

Description: Fixed an issue where known registry images would sometimes show the wrong repo URL.
Known limitations: N/A 
Affected Components: 

Description: Upgrading our API throttling mechanism.
Case ID: DFT-1859, PLAT-3734
Known limitations: N/A 
Affected Components: 

Description: The first release of the Azure CIS v1.4 ruleset, new GCP rules. A complete list can be found here.
Case ID: IN-3687
Known limitations: N/A 
Affected Components: 

Description: Added "isLegacy" property to GCP Network in compliance engine and protected assets.
Case ID: IN-3615
Known limitations: N/A 
Affected Components: 

Description: Added "tags" property to AWS Backup Vault in compliance engine and protected assets.
Case ID: DFR-2253
Known limitations: N/A 
Affected Components: 

Description: Added support for “macieInformation” property in AWS S3 Bucket in compliance engine and protected assets.
Case ID: IN-1966
Known limitations: N/A 
Affected Components: 

Description: Fixed an issue that integrations didn’t take the notification filter into account.
Case ID: DFT-1821
Known limitations: N/A
Affected Components:

Description: Fixed an issue with dashboards when redirecting to events page the time range ignored
Case ID: DFT-1858, PLAT-3733
Known limitations: N/A
Affected Components:

Description: Added a popup when enabling and disabling MFA for all users
Case ID: PLAT-3356
Known limitations: N/A
Affected Components:

Description: Remove old Security Groups Page
Case ID: PLAT-3358
Known limitations: N/A
Affected Components:

Description: Updating Intelligence rules
Case ID: IN-3733
Known limitations: N/A
Affected Components:

Description: Fix dasboard Trend Lines/Widgets not working
Case ID: PROT-3403
Known limitations: N/A 
Affected Components: 

Description: Fix false negative IO attack in FSP.

FSP has been changed. the new version: 1.5.85
Case ID: PROT-1326
Known limitations: N/A 
Affected Components: 

Description: Three CSPM rules for the Spring Cloud Function Vulnerability (CVE-2022-22963).
Case ID: IN-3680
Known limitations: N/A 
Affected Components: 

Description: The first release of GCP CIS v1.3 ruleset, new GCP CloudBots. A complete list can be found here.
Case ID: IN-3362
Known limitations: N/A 
Affected Components: 

Description: Added support for Azure Spring Cloud in compliance engine and protected assets.
Case ID: IN-3663
Known limitations: N/A 
Affected Components: 

Description: Fixed an issue when showing passed entities.
Case ID: DFT-1855
Known limitations: N/A 
Affected Components: 

Description: Kubernetes Admission Control Audit Logs - Fix Description.
Case ID: PLAT-622
Known limitations: N/A 
Affected Components: