Criticality & Vulnerability Interface
- andrew johnston (Unlicensed)
- Victor Buonocore (Unlicensed)
Criticality & Vulnerability
The Criticality & Vulnerability visualization is displayed under the Workspace.
Â
Threat Intelligence Feed Comparison
Description:
You can view a summary of CVEs and IOCs per threat feed using the Threat Intelligence Feed Comparison. Â All of the connected threat feeds (eg. iSight, SYMC, Phishme, and aggregate open source feeds) are displayed with associated CVE and IOC counts.
Field | Description |
---|---|
Threat Feed | Commercial or Open Source aggregate. |
Scan Detected CVEs | The number of unique CVEs detected in your network scan results, per threat feed. |
Total IOCs | The total number of detected IOCs per threat feed. |
Â
Vulnerability Table
Description:
Use the Criticality & Vulnerability visualization to view a roll-up of your vulnerability scan results.
Field | Description |
---|---|
Date | Name of the vulnerability as defined by iSight (at this time). |
CVE | Common vulnerabilities and exposures. Vulnerability as assigned by iSight using the National Vulnerability Database (NVD) convention. This CVE count is expected to match customer scan information against the vendor/product pair, using synthetic Nessus scan information. |
 Vendor | Vendor of the identified vulnerable software/system as defined by customer scan information (Nessus or Qualys) |
Product | The product associated with the Vendor. |
Labor Effort | A customer input that assigns a low, medium or high selection. |
Patch Difficulty | A customer input that assigns a low, medium or high selection. |
Vulnerable Hosts | The count of the number of vulnerable hosts as identified by vulnerability scanning from Customer scan information (Nessus or Qualys). (Sprint 15) |
Initial Estimate | A customer input that assigns a cost/value to patching a vulnerability based on the vulnerability/CVE using an FTE count and annual cost. |
Exploitability | The National Vulnerability Database Exploitability category assignment to the given CVE: All High Functional Undefined POC Unproven |
Anticipated Risk Level | A Customer input that assigns a low, medium or high selection. |
Â
Â