The BlueCat Discovery & Visibility v25.3 release contains the following known issues:
Incorrect DNS record association at zone apex
In cloud environments, when a host (A/AAAA) record has the same name as the DNS zone (zone apex) and corresponding CNAME, SRV, or MX records exist that reference it, running discovery may incorrectly associate those CNAME, SRV, and MX records with an external host record instead of the zone-apex host.
(AWS) Removal of ENIs from EKS clusters not reflected in visibility jobs
Under some circumstances, deletion of Elastic Network Interfaces (ENIs) on an Elastic Kubernetes Cluster (EKS) are not reflected in visibility jobs. This can occur when you add or remove subnets from a cluster in Amazon Web Services (AWS). When this occurs, the visibility job results do not display the correct number of cluster ENIs.
To work around this problem, restart the visibility job when this problem occurs. The correct number of ENIs will then be reflected in the visibility job results.
(GCP) Visibility jobs do not handle Update/Patch operation messages from the DNS zone service
GCP Visibility jobs currently do not support handling Update/Patch operation messages from the DNS zone service. However, this does not impact discovery jobs in GCP Schedule managers.
Warnings from vulnerability scanners
Recently-discovered issues in open source packages used by CDV and BlueCat Gateway might be flagged as High or Critical in reports from vulnerability scanning software. Under rare circumstances, these issues could allow for denial-of-service attacks when deployed to public-facing infrastructure. An update that resolves these issues is expected within the next month as updated libraries become available.
This vulnerability does not affect deployments that are not public facing and are behind a firewall. If your infrastructure is public facing, we recommend you deploy this version of CDV only on Test environments, deploying to Production when the updated version is released.