M365 Security Plus release notes
Issue fix :
A two-factor authentication bypass vulnerability (CVE-2023-35785) reported by dalt4sec through our bug bounty program has been fixed.
Troubleshooting: Users can now check and troubleshoot the issues in their network connection, URL endpoints connection, Exchange session creation and authentication, and permissions required by the Azure AD application and service account from the product's Tenant Settings option.
Technicians can now export the managed/unmanaged objects list from the Manage License module.
The issue of the product's custom logo not being displayed on the product login and MFA page has been fixed.
The issue of unauthenticated file access in notification templates' attachment option has been fixed.