Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

Vulnerability Management: How are Vulnerabilities detected and scored?

Vulnerability Management: How are Vulnerabilities detected and scored?

Environment

  • Carbon Black Cloud Console

Question

How are Vulnerabilities detected and scored? 

Answer

OSQuery results are used is used compared to CVE infromation from Kenna Security and National Vulnerability Database (NVD) to find issues

Additional Notes

The Risk Score is calculated using the gathered results, please refer to Risk Evaluation for more information on this. If the information for the vulnerability from the NVD and Kenna show it is fixed in a specific version the Vulnerability will show even if a fix is applied through other means. Only the noted resolutions from those Sources will resolve the Vulnerability. 


 

Related Content


Was this article helpful? Yes No
No ratings
Article Information
Author:
Creation Date:
‎08-25-2022
Views:
344
Contributors