The Vulnerability Details pane is where all the information about a vulnerability is presented. This includes information ingested from scanners or other connectors, as well as open-source and proprietary information that Vulcan has enriched your vulnerabilities with, such as Attack vectors and threat intelligence. The Vulnerability Details pane is where you can make an informed decision about the right course of action for the vulnerability, and take action and remediate it.

Risk card

The risk card shows the most important information about a vulnerability for you to understand it and start making an informed, data-driven decision about remediation. The following information is presented:

  • Vulnerability criticality
  • Risk
  • Exploitability
  • Asset impact
  • Insights

Vulnerability tab

The Vulnerability tab displays all the available information about the vulnerability:

  • Score
  • Exploits
  • Tags
  • Affected packages
  • Description
  • CVEs
  • CPEs
  • Other relevant information as ingested from the source scanner

Fixes

The Fixes tab displays all the available fixes from Vulcan’s remediation database that are relevant for the vulnerability. There are 3 types of fixes in Vulcan:

  1. Advisories – official vendor security advisories and product updates
  2. Instructions – workarounds, mitigations, blog posts and other insights Vulcan’s team of analysts uncover and research.
  3. Links – references and mentions of the vulnerability from around the web

Assets (for Hosts and infrastructure vulnerabilities)

The Assets tab displays all the assets affected by this vulnerability.
It shows the breakdown of statuses of these assets. There are 6 possible statuses:

  • Vulnerable
  • In Progress
  • Fixed
  • Remediation Validated
  • Risk Acknowledged
  • False Positive

Clicking on the status will filter the assets to track remediation progress.

Below the status breakdown is displayed a detailed, filterable table of the assets themselves.

Contextual Assets list

The Assets list is contextually filtered as you explore your vulnerability data. It reflects the filters that were applied in the Vulnerability list when the Vulnerability details screen was opened.
What this means in practice is that the assets listed in the Assets sub-tab of the Vulnerability details are only the assets that match the filter criteria applied in the Vulnerability list filter searchbar. If you want to see all the assets a vulnerability affects, simply remove the filters in the Vulnerability list and reopen the Vulnerability Details pane.
Note that not all filters will affect the Assets list. A filter by CVSS, for example, will match all the vulnerable assets.

Activity feed

The Activity Feed tab displays a detailed audit log of all the events related to this vulnerability along with their timestamp.

Did this answer your question?