Skip to main content

11.33.73 Platform Release

Released December 30, 2025

info

If you are using the NIST NVD connector, Brinqa recommends switching to Brinqa Risk Intelligence, as the NIST NVD connector is no longer supported in Brinqa Platform version 11.28 or later.

Announcements

  • We released 8 new dashboards to enhance visibility and analysis across key security areas.

    Key dashboards:

    • Findings by Remediation Teams: Matrix table visualization showing finding counts by remediation team and severity.
    • Findings by Business Unit: Matrix table visualization showing finding counts by business unit, severity, and SLA status with color-coded severity indicators.
    • Urgent Risks: Displays exploitable threats by SLA status, new CISA KEV findings, new exploitable findings, CISA KEV findings by severity, and findings with exploits available.
    • OWASP Top 10 (2025 and 2021): Two dashboards displaying findings by OWASP category, severity, and application for vulnerability analysis.

    These pre-built dashboards are available immediately upon upgrade and can be customized to meet your organization's specific needs.

  • We enhanced the Matrix Table chart type with multiple improvements, including drill-through functionality and migration to BQL for better drill-down support and improved access control.

  • We added CVSS v4.0 support as a risk scoring strategy, including new attributes for CVE Records and Finding Definitions, updated views, risk scoring models, score renderer, and integration with the Brinqa Risk Intelligence connector.

    This feature is disabled by default and can be enabled by system administrators as needed.

  • We expanded MITRE ATT&CK tactics, techniques, and CAPEC (Common Attack Pattern Enumeration and Classification) attack patterns to Finding and Finding Definition views (previously available only on CVE Records), as well as pre-built dashboards with input filters for enhanced security monitoring and threat hunting capabilities.

  • Enhanced BrinqaIQ with new capabilities to improve AI-powered assistance across the platform.

    • Model Context Protocol (MCP): Enables seamless integration with external data sources and tools for richer context and more accurate responses.
    • Multilingual support: Allows users to interact with BrinqaIQ in English or Spanish for improved accessibility and user experience.

New features and enhancements

  • Improved remediation request management to allow users to manually add or remove findings after request creation, providing greater flexibility in managing remediations and reducing the need to recreate requests.

  • Added dynamic filtering to dashboard Input filters to display only options associated with previously selected filter values, improving data exploration and preventing empty results.

  • Added request type support to the Brinqa remediation connector for improved integration with external remediation management systems.

Addressed issues

  • Fixed manual data entry validation error that occurred when updating host records with identity shadow attributes that have different names than the identity attribute.

  • Fixed Analytic Trend charts to display current values and prevent the "since" date from being cut off.

  • Fixed an issue where creating a new request with the same name as an existing request would incorrectly update the old request instead of creating a new one. The system now validates request names during creation and prevents duplicate names, displaying an error message when attempting to reuse an existing request name.

  • Fixed timeout errors for users with Risk Analyst role on reports with complex BQL queries by using field aliases correctly in WITH clause queries.

  • Fixed an error that occurred when creating action items (such as false positive requests) with BQL queries containing ORDER BY clauses. The system previously returned an exception stating "it is not possible to access variables declared before the WITH/RETURN" when ORDER BY was used. The ORDER BY clause has been removed from internal query processing for action item creation, as record ordering is not required for this operation.

  • Fixed request creation actions not available on dashboard list views by adding appropriate calling context to request actions.

  • Fixed an issue where the Data Warehouse wasn't processing the Informed User membership correctly by cleaning up the user defined library (UDL).

Last updated on