Environment
- Carbon Black Cloud Console
Question
How are Vulnerabilities detected and scored?
Answer
OSQuery results are used is used compared to CVE information from National Vulnerability Database (NVD) to find issues
Additional Notes
The Risk Score is calculated using the gathered results, please refer to
Risk Evaluation for more information on this. If the information for the vulnerability from the NVD show it is fixed in a specific version the Vulnerability will show even if a fix is applied through other means. Only the noted resolutions from those Sources will resolve the Vulnerability.
Related Content