CVE details are displayed in the following tabs:
- Description tab
- Intelligence Information tab
Information per source. You can filter to see exploits.
- CPEs tab
- Affected Assets tab
Affected assets. This tab is shown only if asset collection is enabled in the Qualys or Tenable.io integration.
CVE Description tab
The following figure shows the CVE Descriptio n tab :
The Description tab shows the following information:
|A - General information||CVE description.|
To see the CVE in NVD, click Open in NVD.
|B - Additional information||NVD information, including:- NVD dates- Source and type of vulnerability- Qualys QID or Tenable Plugin vulnerability type IDsShows cyberterms related to the CVE. To see more details, hover over the cyberterm.|
|C - Mentions over time||Shows the mentions from all web sources over the past six months. You can change the date range. Peaks normally indicate spikes in exploits.|
|D - Rapid7 score breakdown||Shows the inputs to the overall Rapid7 score. Each input is ranked from 1 (least risk) to 100 (highest risk).|
CVE Intelligence Information tab
Use the Find mentions field to search within the text that is displayed in all mentions.
You can filter the mentions by date range.
To see other mentions that are not displayed, click Load more.
CVE CPEs tab
The CPEs tab enumerates all technologies that are affected by a CVE.
In the previous figure, 11 of the CPEs are relevant to the user's technologies and one is a general CPE, not relevant to the user.
CVE Affected Assets tab
The following figure shows the CVE Affected Assets tab:
The Affected Assets tab shows more detailed information about the company assets that are affected by each CVE. To enable the display of this information, enable the data collection in the integration options for your CVE manager (Qualys or Tenable.io).