Identify and escalate security issues using NVD

  • Release version: Washingtondc
  • Updated February 1, 2024
  • 1 minute to read

    • When Common Vulnerability and Exposures identifier (CVE-ID) records are downloaded from the National Vulnerability Database (NVD), they are compared to the software in your company network as identified by the Software Asset discovery model. When a CVE-ID matches vulnerable software or configuration item in your network, a vulnerable item is created. You use the information in the CVE-ID record to decide whether to escalate the vulnerable item for remediation.

    Before you begin

    Persona and granular roles are available to help you manage what users and groups can see and do in the Vulnerability Response application. For an initial assignment of the persona roles in Setup Assistant, see Assign the Vulnerability Response persona roles using Setup Assistant. For more information about managing granular roles, see Manage persona and granular roles for Vulnerability Response.

    Procedure

    1. Navigate to All > Vulnerability Response > Libraries > NVD.
      A list of CVE-IDs that were downloaded from the NVD is shown. Updates from the NVD can be performed on-demand and by scheduled runs from the NIST National Vulnerability Database Integration records located at All > Administration > Integrations.
    2. Click a CVE record to view the following information:
      • a summary for the CVE-ID.
      • a reference to a Common Weakness Enumeration (CWE) entry, if applicable.
      • the vulnerability score of the CVE-ID on the Common Vulnerability Scoring System (CVSS). For more information on the CVSS, see the National Vulnerability Database website.
    3. Click the related lists for more information on vulnerabilities.
      Vulnerability References
      Name, description, and URL for the given vulnerability and where it is referenced.
      Exploits
      Details.
      Weaknesses
      List of CWE Weaknesses.
    4. Click the following related lists to get more information for identifying vulnerabilities.
      Related listDescription
      Vulnerable Items Lists any vulnerable items, which consist of pairings of a potentially vulnerable configuration item and software. To get more information about a pairing, click the information icon (Information icon).
      Note:
      If software is removed, any associated vulnerable items are closed and removed from the Vulnerable Items related list.
      Vulnerability Entries Lists vulnerability entries for the selected software record. Click a record to view its details.
      If vulnerabilities were identified and vulnerable items were created, you can Resolve remediation tasks, as needed.