top of page

Vulnerability Management (CVE)

image.png

The CVE window lets you view and manage the list of internationally recognized vulnerabilities (Common Vulnerabilities and Exposures), downloaded from the NIST website and enriched with references provided by MITRE.
This tool helps monitor security risks related to installed software and quickly identify patches or updates released by vendors.

image.png

CVE List

​

On the left side of the window there is a grid showing:

​

  • the vulnerability identifier (CVE ID),

  • a brief description,

  • publication date,

  • CVSS score.

CVE–Software Match Report

​

The right side of the window shows a match report between CVEs and the software inventoried on registered machines.
The system sends the list of vulnerabilities, compares the data with the inventory, and highlights positive matches.
The report can be printed or exported for external analysis.

Selecting a CVE and clicking Open displays the Technical Sheet, which lists:

​

  • vendor references (for patching or updates),

  • MITRE CWE entries (with explanations and demonstrations).

image.png

A AI Analysis button is also available to generate a descriptive report with a detailed explanation of the selected vulnerability.

Updates

​

  • CVEs are automatically updated every hour from the source.

  • The automatic report is generated daily (available with advanced AI license only).

​

Filtering options (minimum score and recent days) can be configured in the section Configuration → Plug-in → CVE.​​

CVE in the Machine Technical Sheet
​
Within the Technical Sheet of each machine, the CVE (Beta) tab is available.
This section displays the correspondence report between the software installed on the machine and known vulnerabilities, applying the configured filters (minimum score and recent days).
The result may be empty if no matches are detected.
The report is generated through automated analysis based on Artificial Intelligence and includes a validation notice: it is always necessary to verify with the vendor’s official bulletins and with local evidence.
Commands are available to update the report, export it, and save it.​​​

image.png

​​Licensing

​

  • Standard license: allows viewing the list and generating reports on demand.

  • Advanced AI license: automatically emails a daily report and displays the window pre-filled on opening.

image.png
bottom of page