Good Morning,
I’m hoping to find out when InsightVM will add CVE-2025-0411 for 7-Zip. I noticed I have some older 7-Zip findings in my environment, but not this latest one which I was tracking personally.
Additionally, I noticed that InsightVM will scan some of my systems for Zoom but not all of them. Is anyone else seeing issues like this?
Thank you
Agree with you… it is a bit hard when your CISO sees this KEV and asks if we are vulnerable… and we have nothing to provide… except doing our own test
Per Rapid7 support: “There is an ongoing internal case assigned to our engineering team to create vulnerability checks for CVE-2025-0411. I have linked this case to the internal engineering ticket and I will update you once there is an update from our internal team.”
Seems like a long time to scan against a finding. I’m a new user of Rapid7 and I’m not sure I’ve seen something take so long. I’m surprised they cannot just change the scan for previous version detections and just update the CVE.