Vulnerabilities are defined by STIX Version 2.0 as "a mistake in software that can be directly used by a hacker to gain access to a system or network."
Discovered vulnerabilities are published in databases by cybersecurity researchers as "CVEs" which stands for Common Vulnerabilities and Exposures.
A CVE number identifies each vulnerability that has been found or reported by a trusted agency.
scoutPRIME can retrieve CVE or vulnerability information for elements that carry risk just as it does for Threats. Each of those vulnerabilities will be displayed on an Element Details page like the one below.
The Vulnerability Details page provides the following sections and information:
System Information - Provides the full name of the Vulnerability, its CVSS score, and the CVE number.
Vulnerability Properties - This information includes TIC scores for the Vulnerability, the Source where the CVS information came from, its classification, and Criticality.
Based on your research and analysis, you may determine that a Vulnerability represents greater or less risk to your organization. When this happens, you can adjust the current TIC score properties individually for the source, criticality, or classifications. For step by step instructions to do this, click here.
Associated Collections - List of saved collections that carry the element with the said Vulnerability.
Notes - Here you can view notes others or you have created about this Vulnerability. You can also add a new one by clicking the + (plus sign) icon on the section's top right corner.
Related Content