Vulnerabilities

CVE (Common Vulnerabilities and Exposures)

CVE is a public catalogue of known cybersecurity vulnerabilities, maintained by MITRE and sponsored by CISA. Each entry has a unique CVE ID (e.g., CVE-2024-12345), a description, and references. CVE IDs are the universal language for tracking and patching specific vulnerabilities.

Explore CVE (Common Vulnerabilities and Exposures) tools on isMalicious

Frequently Asked Questions

What is CVE (Common Vulnerabilities and Exposures)?

CVE is a public catalogue of known cybersecurity vulnerabilities, maintained by MITRE and sponsored by CISA. Each entry has a unique CVE ID (e.g., CVE-2024-12345), a description, and references. CVE IDs are the universal language for tracking and patching specific vulnerabilities.

How is CVE (Common Vulnerabilities and Exposures) related to CVSS (Common Vulnerability Scoring System)?

CVE (Common Vulnerabilities and Exposures) and CVSS (Common Vulnerability Scoring System) are both key concepts in threat intelligence. CVSS is an open framework for communicating the severity of software vulnerabilities. A CVSS v3 base score from 0 to 10 reflects factors like attack vector, complexity, privileges required, and impact on confidentiality, integrity, and availability. Scores ≥ 9.0 are Critical; ≥ 7.0 are High.

Related Terms

CVSS (Common Vulnerability Scoring System)EPSS (Exploit Prediction Scoring System)KEV (CISA Known Exploited Vulnerabilities)
← Back to Glossary