Enterprise TruRisk™ Platform Release 10.36.1
November 3, 2025
Qualys Vulnerability Management (VM)
Scanner Appliance Decommissioning with Scan Cancellation Support
With this enhancement, you can now delete scanner appliances even when scans are in running or paused states. Previously, deletion attempts were blocked if any associated scans were active, resulting in the following error message:
The selected appliance has one or more running or paused scans. You must cancel these scans in order to delete the appliance.
This was especially problematic when users had already deleted scans or lacked scan reference numbers, making it impossible to proceed with decommissioning.
To address this, the system now skips the strict check that previously blocked deletion. Instead, you will see a warning during the delete confirmation, letting them know that any associated scans will be marked as errors if the scanner is decommissioned.
Additionally, a new Cancel Scan Report button has been added in the Delete Virtual Scanner dialog:
Clicking Delete Virtual Scanner displays a report of all running or paused scans linked to the scanner on the Report: Cancel Running or Paused Scans screen, allowing you to cancel them directly by clicking the Cancel Scans button:
Once all scans are cancelled, the Delete button is enabled on the Delete Virtual Scanner dialog:
A refresh logic ensures the Delete Virtual Scanner dialog updates every minute until all scans are fully cancelled for the Delete button to be enabled.
Any exceptions during cancellation are logged, and affected scan references are shown on the UI:
This enhancement significantly improves user experience by:
- Providing visibility into active scans.
- Allowing direct cancellation without needing scan reference IDs.
Qualys Policy Compliance (PC)
For the list of features and improvements we have made in Policy Compliance/Policy Audit, refer to the Policy Audit UI Release Notes for Release 1.5.
Issues Addressed
The following reported and notable customer issues are fixed in this release:
| Component/Category | Application |
Description |
| VM - Remediation | Vulnerability Management | When users deleted a policy rule that had triggered a remediation ticket, the associated ticket was not automatically removed. This behavior was intentional to preserve remediation records for audit and tracking purposes. Users can now manually delete such tickets if needed, using either the API endpoint or the remediation ticket listing page on the UI. For more info, refer to the Online Help. |
| UILIB/RX | Vulnerability Management | When customers accessed the QUALYS MASTER CLOUD SERVICES AGREEMENT from the VMDR module via the Account Info section, the document displayed with oversized text and lacked scroll functionality, making it unreadable. This issue occurred across multiple browsers and platforms. It has now been resolved by converting the content to HTML format and optimizing line spacing. The agreement now displays correctly across all supported subscription types, including Prospect, Customer, Internal, Free, and Partner Internal. |
| VM - Scans | Vulnerability Management | When customers launched a Cloud Cert View scan, they encountered the error, The scanner appliance is not in the network, despite the scanner being correctly configured for the target VPC. This issue occurred because a check was missing for Cloud Cert View scans, causing incorrect network identification logic to be applied. The issue has been resolved by implementing code changes. Customers can now successfully launch Cloud Cert View scans without encountering scanner-related errors. |
| VM - Assets | Vulnerability Management | When customers navigated to the OS tab in the VMDR module, the pages failed to load completely. This performance issue impacted multiple users based on the data present in their subscriptions. To resolve this, a code fix has been implemented, allowing the tabs to load quickly. |
| VM - Assets | Vulnerability Management | When customers attempted to update scanner appliance configurations, such as, enabling email notifications for missed scans, they encountered a "Hack Attempt" error message. The issue has been resolved by refining the logic to display a more accurate error message during form submission. The scanner edit workflow has been validated to ensure smooth operation, and users can now add, update, or remove scanner appliances without encountering false error messages. |
| VM - Scans | Vulnerability Management | When customers viewed the Scan Summary page, some hosts appeared as Not Scanned even though they were listed as scanned in the Scan Result (UI/PDF), leading to confusion. This discrepancy was caused by outdated logic that did not utilize scanner-supplied data for identifying hosts with no detected vulnerabilities. The logic has now been refactored into a shared module to ensure consistency across components. A new Not Vulnerable Hosts section has been added to the Scan Summary page to clearly indicate hosts that were scanned but returned no vulnerabilities. This update ensures alignment between the Scan Summary and Scan Result views, providing accurate and consistent reporting. For more info, refer to the Online Help. |
For the list of issues addressed in Policy Compliance/Policy Audit, refer to the Policy Audit UI Release Notes for Release 1.5.