View Externally Inferred CVEs - Administrator Guide - Cortex XSIAM - Cortex - Security Operations

Cortex XSIAM Administrator Guide

Product
Cortex XSIAM
Creation date
2024-02-26
Last date published
2024-04-16
Category
Administrator Guide
Abstract

Cortex XSIAM provides information about externally inferred CVEs for all assets and external services.

Cortex XSIAM provides information about externally inferred CVEs for all assets and external services in the Asset Inventory. For information about what externally inferred CVEs are and how Cortex XSIAM identifies them, see Externally Inferred CVEs.

The following steps explain how to view externally inferred CVEs and information about them.

  1. Select AssetsAsset Inventory.

  2. Select All Assets, a Specific Assets page, or All External Services.

    Each of these pages displays a tabular view of your assets or services that includes the Externally Inferred CVEs and Externally Inferred Vulnerability Score fields.

  3. View the complete list of externally inferred CVEs that impact an asset or service by selecting a row in the table for an asset or service that has externally inferred CVEs.

    After you select the row, the details panel for that asset or service displays to the right of the table, and includes a complete list of all the externally inferred CVEs that impact that asset or service and the inferred CVE match confidence.

  4. Click Detailed view next to any externally inferred CVE to display additional details.

    The CVSS v3 Score, CVSS v2 Score, the product and version information used to make the inference, and a link to the CVE on the NVD website is displayed.