Vulnerabilities
Last updated
Last updated
Vulnerabilities are the weaknesses in systems, exploited by Threat Actors, often using malware. Tracking vulnerabilities is useful, especially if they are in systems and assets you are managing, because it helps prioritize vulnerability management programs. If you can easily track, for example, which vulnerabilities are actively exploited right now, in the wild, then that may help you provide some direction to what to patch first, and what can wait.
Go to the in the sidebar (go there now with this link)
Scroll down to 'Vulnerabilities'
Type in the name or code of the Vulnerability you want to create, click on 'create'
Wait a minute or two: Liberty91 is looking for relevant reporting and generating a custom description for your new Vulnerability
Don't forget to tune its
The top-left card is green, and shows a plus-sign. Type in the name of your new vulnerability and click 'create'.
Wait a minute or two: Liberty91 is looking for relevant reporting and generating a custom description for your new Vulnerability
Sometimes, Liberty91 will suggest new Threat Actors, Malware of Vulnerabilities for in your Threat Library. These are based on events in your dashboards. When you see one that you'd like to keep tracking, just click on it and Liberty91 will collect the relevant reporting and generate a relevant and accurate description for you.
Find the 'Suggested Vulnerabilities' in an Event Card. They are on the side, under the Analysis and the Threat Library Links that already exist.
Click on the Vulnerability you want to create a card for and track
Wait a minute or two: Liberty91 is looking for relevant reporting and generating a custom description for your new Threat Actor
Vulnerabilities can go by codes, identifiers and nicknames. The vulnerability CVE-2024-4323 for example, is also known as 'Linguistic Lumberjack'. You don't want to create multiple Vulnerability Cards for the same thing, so having a Vulnerability Card named 'Linguistic Lumberjack' with Alias 'CVE-2024-4323' helps capture mentions of both, under the same card.
When you first create a vulnerability card, there will be nothing on it. That's because Liberty91 is still collecting relevant reporting and learning as much as it can about your new vulnerability.
But once Liberty91 has found relevant reports, it will create a custom, relevant and up-to-date analysis for you, telling you exactly what it is and how it applies to you. If you want to update this (perhaps because new reporting has come out), just click on 'update description'.
Additionally, any relevant reports are nicely categorized under the description:
Go to 'Vulnerabilities' under your Threat Library in the . You may have to scroll down a bit.
Don't forget to tune its
Don't forget to tune its