We have Tenable.sc integration creating vulnerability records with CISA KEV integration to provide additional data.
My question is about the Exploit Exists field. Looking at the TEN record I have records with this field set to both true and false and a tab that shows CISA KEV data when it exists.
I have ALL combinations in my data of Exploits Exists TRUE/FALSE and CISA KEV exists TRUE/FALSE.
I wasn't expecting that, I was expecting that if a CISA KEV existed the Exploits Exists flag would be true. I want one flag to show to my users so they know there is an exploit for this vulnerability. 2 flags with one true and one false would just be confusing.
Did we miss something when configuring the CISA integration?
Some annotated screenshots attached, if that helps.
Thank you!
