Vulnerabilities

Patch Management

Patch management is the systematic process of identifying, acquiring, testing, and deploying software updates (patches) to fix security vulnerabilities and bugs. EPSS scores and CISA KEV membership help security teams prioritize which patches to apply first when resources are limited.

Frequently Asked Questions

What is Patch Management?

Patch management is the systematic process of identifying, acquiring, testing, and deploying software updates (patches) to fix security vulnerabilities and bugs. EPSS scores and CISA KEV membership help security teams prioritize which patches to apply first when resources are limited.

How is Patch Management related to CVE (Common Vulnerabilities and Exposures)?

Patch Management and CVE (Common Vulnerabilities and Exposures) are both key concepts in threat intelligence. CVE is a public catalogue of known cybersecurity vulnerabilities, maintained by MITRE and sponsored by CISA. Each entry has a unique CVE ID (e.g., CVE-2024-12345), a description, and references. CVE IDs are the universal language for tracking and patching specific vulnerabilities.

Related Terms

CVE (Common Vulnerabilities and Exposures)KEV (CISA Known Exploited Vulnerabilities)EPSS (Exploit Prediction Scoring System)SBOM (Software Bill of Materials)
← Back to Glossary