top of page

CVE

The CVE window allows consultation and management of internationally recognised vulnerabilities listed under Common Vulnerabilities and Exposures (CVE), downloaded from the NIST website and enriched with references provided by MITRE.

This toll can help monitor security risk related to installed software and enables rapid identification of updates released by vendors.

cveee.png

CVE List

The left-hand side of the window displays a grid containing:

  • CVE identifier (CVE ID).

  • Short description.

  • Publication date.

  • CVSS score.

CVE – Software Matching Report

The right-hand section shows a matching report between CVEs and software inventoried on registered machines.

The system processes the vulnerability list, compares it with the software inventory, and highlights positive matches.

The report can be printed or exported for external analysis.

Selecting a CVE and clicking [Open] provides access to the "Technical Details" view, which includes:​

  • Vendor references for patching or updates.

  • MITRE CWE entries with related explanations and examples.

Immagine2 .png

The [AI Analysis] button generates a descriptive report with an extended explanation of the selected vulnerability.

Updates

  • CVEs are updated automatically every hour from the source database.

  • The automatic report is generated daily, available with the advanced AI licence.

NOTE:

Filtering options (such as minimum CVSS score and recent days) are configurable under:

Setting > Plug In > CVE, as described in this section of this manual.

CVE in the Machine Technical Details

 Within the "Technical Details" of an individual machine (accessed via Machine List > Open) a dedicated CVE tab is available.
This section displays the matching report between software installed on the machine and known vulnerabilities, applying the configured filters such as minimum score and recent days.
The result may be empty if no matches are detected.
The report is generated through automated AI-based analysis and includes a validation notice. Official vendor advisories and local evidence should always be verified before taking action.
Options are available to refresh, export, or save the report.

Immagine3.png

Licensing

  • Standard licence: allows consultation of the CVE list and on-demand report generation.

  • Advanced AI licence: automatically sends a daily report by email and opens the window with the pre-generated report .

Tools

bottom of page