Content matrix

VersionSummary of contentComments
  • Bug fixes to resolve two CVE vulnerabilities found in CAST Dashboards: CVE-2021-45046 (for Apache Log4j) and CVE-2021-23463 (for h2database).

Can be used with:

  •  8.3.3
  • This version is not available.
  • Bug fixes to resolve two CVE vulnerabilities found in CAST Dashboards: CVE-2021-44228 (for Apache Log4j) and CVE-2021-43466 (for OWASP). 
  • Roles and data authorizations: Roles and data authorizations feature moved from beta to functional release
  • User Profile: In LDAP mode, if there is no search object, the user list is displayed based on the assigned profile/s


Other Updates

Internal IdDetails
DASHBOARDS-4238Upgrade Log4j to v 2.16 to resolve CVE-2021-45046. Refer: and (CAST documentation).
DASHBOARDS-4241Update to fix CVE-2021-23463. Refer:



This version is not available.


Other Updates

Internal IdDetails
DASHBOARDS-4233Upgrade Log4j to v 2.15 to resolve CVE-2021-44228. Refer: and
DASHBOARDS-4236Fix CVE-2021-43466 for OWASP. Refer:


Feature Improvements

UI - User Role/Profile featureThe User Role/Profile feature is now functional. See
UI - User Role/Profile featureWhen LDAP authentication mode is active, the list of users/groups will display the list of users/groups based on their assigned profile by default. When a user/group search is initiated, users/groups matching the search string will be displayed. See
Admin - Encryption of database credentialsIt is now possible to encrypt database credentials for both the application schemas and the user role/profile schema. See

Other Updates

Internal IdDetails
DASHBOARDS-4042Fixed an issue where the "view as" option was present in every view, after navigating to the Risk Investigation view.
DASHBOARDS-3917Fixed an issue that occurred when the user role/profile database was used by multiple dashboards: the user authorization table would work in only one dashboard - in all other dashboards the view would not load correctly.
DASHBOARDS-3886Fixed an issue that occurred when switching between authentication modes: when using the "Become Admin" option, the resulting User authorization view was empty.
DASHBOARDS-3855Fixed an issue where the "Show more" option in the Action Plan Recommendation page was not displaying the correct count of violations.
DASHBOARDS-3081Removed surplus padding to the right in the Report generation page.
DASHBOARDS-4096Fixed an issue where adjustment factor detail values were rounded incorrectly.

Resolved Issues

Customer Ticket IdDetails
32599Unable to create initial admin at 1st connection to the Dashboard (when first connected to Dashboard, admin option works only for localhost).
32831Encrypt login and password for database is not possible in 2.x Dashboards.
32860Issue while changing a profile role from a restricted role to admin role.
32867SAML group authentication is not working in Dashboard 2.3.0
32893Ldap group search is failing in user configuration page.