The Vulnerability Details pane is where all the information about a vulnerability is presented. This includes information ingested from scanners or other connectors, as well as open-source and proprietary information that Vulcan has enriched your vulnerabilities with, such as Attack vectors and threat intelligence. The Vulnerability Details pane is where you can make an informed decision about the right course of action for the vulnerability, and take action and remediate it.

Risk card

The risk card shows the most important information about a vulnerability for you to understand it and start making an informed, data-driven decision about remediation. The following information is presented:

  • Vulnerability criticality

  • Max Risk

  • Threats & Vulnerability Tags

  • Asset impact

  • Insights

Remediation card

The remediation card shows important information about the remediation campaigns that the vulnerability is part of and allows notes to be added to assist with the remediation process.

The following information is presented:

  • Running Campaigns

  • Notes

Vulnerability

The Vulnerability tab displays all the available information about the vulnerability:

  • Score

  • Attack Vector

  • Tags

  • Affected Vendor

  • Affected packages

  • Description From NVD

  • CVEs

  • CPEs

  • Other relevant information as ingested from the source scanner

Fixes

The Fixes tab displays all the available fixes from Vulcan’s remediation database that are relevant for the vulnerability. There are 3 types of fixes in Vulcan:

  1. Advisories – official vendor security advisories and product updates

  2. Instructions – workarounds, mitigations, blog posts and other insights Vulcan’s team of analysts uncover and research.

  3. Links – references and mentions of the vulnerability from around the web

Assets (for Hosts and infrastructure vulnerabilities)

The Assets tab displays all the assets affected by this vulnerability.
It shows the breakdown of statuses of these assets. There are 6 possible statuses:

  • Vulnerable

  • In Progress

  • Fixed

  • Remediation Validated

  • Risk Acknowledged

  • False Positive

Clicking on the status will filter the assets to track remediation progress.

Below the status breakdown is displayed a detailed, filterable table of the assets themselves.

Contextual Assets list

The Assets list is contextually filtered as you explore your vulnerability data. It reflects the filters that were applied in the Vulnerability list when the Vulnerability details screen was opened.
What this means in practice is that the assets listed in the Assets sub-tab of the Vulnerability details are only the assets that match the filter criteria applied in the Vulnerability list filter searchbar. If you want to see all the assets a vulnerability affects, simply remove the filters in the Vulnerability list and reopen the Vulnerability Details pane.
Note that not all filters will affect the Assets list. A filter by CVSS, for example, will match all the vulnerable assets.

Threat Intelligence

The Vulcan Platform enriches the Vulnerabilities with external threat tags retrieved from different Threat Intelligence sources. The Threat Intelligence tab shows a list of published exploits, related CVEs and links to the exploit source.

Activity feed

The Activity Feed tab displays a detailed audit log of all the events related to this vulnerability along with their timestamp.

Did this answer your question?