Published Date: July 04, 2025
We are excited to bring you our latest release – Saner CVEM 6.5. This release offers exciting new features, enhancements, and bug fixes.
What’s New in Saner CVEM 6.5
New Features
Remote Scripting with Automation Capabilities
We have introduced Remote Scripting, a powerful new capability in Saner Endpoint Management (EM) that enables administrators to run and manage custom scripts across Windows, Linux, macOS, and AIX endpoints—remotely, securely, and at scale.
Remote Scripting empowers teams to automate operations, troubleshoot efficiently, and maintain endpoints with greater control and flexibility.
Key Highlights:
- Cross-platform support – Windows, Linux, macOS and AIX.
- Built-in, user-friendly editor with support for multiple scripting languages.
- Version control to track, manage, and audit script changes over time.
- Role-based approval workflows to ensure secure and authorized script execution.
- Flexible scheduling for on-demand, scheduled, or recurring script execution.
- Comprehensive audit trails capturing every script run for compliance and visibility.
- Centralized script library of pre-defined scripts to accelerate routine tasks.
With Remote Scripting, you can automate endpoint operations, respond to issues faster, and improve efficiency—all from a centralized, unified interface.
Test and Deploy for Automation
We’ve extended our proven Test and Deploy workflow to automation jobs in Saner Patch Management (PM) and Compliance Management (CM), combining the speed of automation with the assurance of pre-deployment testing.
With this enhancement, you can automate patching and compliance remediation tasks while ensuring updates are thoroughly tested before deployment.
Key Highlights:
- Enables automated patch and compliance remediation with built-in pre-deployment testing phase.
- Supports defining success criteria for testing to validate updates before deployment.
- Allows grouping of devices into test and deployment groups for controlled rollouts.
- Fully automates the process from testing through deployment once success criteria are met.
Test and Deploy for Automation helps reduce risk, maintain consistency, and ensure critical updates are validated in real-world conditions—all without manual intervention.
Enhancements
Enhanced Device Discovery for Deeper Network Insights
We have enhanced Device Discovery to provide more detailed and actionable visibility across your network.
Device discovery now captures comprehensive information about each device’s ports, the services running on them, and their current state—whether open, closed, or filtered. We’ve also introduced an optional Enhanced Name Lookup setting to improve hostname and OS detection, even within restricted networks where visibility is limited.
This enhancement provides detailed port, service, and state information for every discovered device, along with improved hostname and OS detection accuracy in restricted environments.
Approval Workflow for Manual Test and Deploy Jobs
We have introduced an optional approval workflow between the test and deploy phases for manual jobs in Saner Patch Management (PM) and Compliance Management (CM). This added control ensures that no patches are deployed without explicit approval—helping reduce risk and prevent unintended changes, especially in critical environments.
Patch Version Control for Test and Deploy
We have enhanced the Test and Deploy capability in Saner Patch Management (PM) and Compliance Management (CM) to ensure that deployments use the exact patch version tested. This eliminates the risk of newer, untested patches being introduced into deployment.
This control applies to both manual and automated Test and Deploy workflows, providing greater consistency and confidence in your patching process.
Centralized Time Scheduling for Jobs and Automation
We have introduced Centralized Time Scheduling for jobs and automation in Saner Patch Management (PM) and Compliance Management (CM)
Administrator can now choose to schedule tasks using either the endpoint’s local system time (existing) or a centralized, fixed time. This enhancement enables globally synchronized patching and compliance tasks—ensuring consistent execution across all devices, regardless of location or time zone.
Feature Update Control in Patch Automation
We have added the ability to include or exclude feature updates when creating automation rule in Saner Patch Management (PM). This gives you flexibility to decide whether feature updates should be included in patch automation, allowing you to control the scope of automated patching and avoid unintended feature upgrades.
Remote Debug Log Collection for Saner Agents (Windows)
We have introduced a new Debug Log Collection capability to simplify troubleshooting for Saner Agents. Administrators can now collect and download detailed agent logs directly from the Saner Web Console—eliminating the need to manually access the endpoint.
This feature provides flexibility to select which logs to collect. Mandatory required details such as Agent logs are pre-selected, while additional logs can be included as needed.
Key Benefits:
- Accelerate root cause analysis with access to agent logs, system info, and diagnostics from a centralized interface.
- Remotely collect debug logs from the Saner Web Console—no need to access the endpoint manually.
- Choose which logs to collect, with a combination of mandatory and optional details.
| Note The Remote Debug Log Collection feature is currently available for Windows endpoints only. |
UI Enhancements
We’ve enhanced the Saner CVEM interface to deliver a faster, more intuitive, and seamless user experience. The new enhancements streamline key workflows, simplify navigation, and help you complete everyday tasks with greater ease and efficiency.
New Platform Support
In Saner CVEM 6.5, we have added support for the following operating systems.
- RHEL 10
- Ubuntu 25.04
- AlmaLinux 10
- Fedora 42
REST and Report API Changes
Here is an overview of the API changes made in Saner CVEM 6.5.
Modified APIs
- getDeviceJobInfo
A new field, ‘tool’, has been added to the ‘getDeviceJobInfo‘ API request. This field accepts values CM (Compliance Management) and PM (Patch Management) to let you retrieve job details specific to either module. If no value is provided, the API will return the asset’s job details from Saner PM and CM by default.
- addRemediationRule
A new field, “skipfeatureupdate” has been added to this API request. When set to true, this field allows the API to skip the feature update during the creation of a remediation rule.
- updateRemediationRule
A new field ,“skipfeatureupdate” has been added to this API request. When set to true, this field allows the API to skip the feature update during the updation of an existing remediation rule.
Report API Changes
- New Date Range Filters for Vulnerability Reports:
The following reports now support startDetectedDate and endDetectedDate filters to refine results by detection date:- All Vulnerabilities Based on Asset
- Vulnerabilities by Devices
These filters allow you to isolate vulnerabilities detected within a specific date range, helping with targeted analysis and reporting.
- Patch Release Date Filters for Vulnerabilities by Devices Report:
Two new filters—startReleaseDate and endReleaseDate—have been added to narrow results based on the release date of associated patches. You can easily filter vulnerabilities tied to patches released within a specific timeframe, improving remediation planning and prioritization.
We would love to hear from you! If you have any feature suggestions to help improve your experience with Saner CVEM, feel free to contact us at [email protected].
