Vulnerability Risk Analyzer
The Threat Command Vulnerability Risk Analyzer module provides an enriched view of Common Vulnerabilities and Exposures (CVEs). By curating intelligence data from the clear, deep, and dark web, Threat Command prioritizes CVE data so you can focus on the CVEs most relevant to your business.
Common Vulnerability Scoring System (CVSS) scores provide a useful starting point for assessing vulnerability severity, but they don’t offer insight into attacker behavior, intent, or the likelihood of vulnerability exploitation.
Threat Command enriches CVE data by adding trends from the dark web, the open-source community, web discussions, and actual exploits, to help you pinpoint exactly where to focus your efforts. Threat Command enrichment data is dynamic, taking into account both customer patches and technology updates to deliver the most actionable data on CVEs available today, enabling you to confidently prioritize patching sequences.
The Severity score for each CVE displays a low, medium, high, or critical status to each vulnerability. This score is developed by weighing all the inputs including mentions, available exploits, and more.