Common Vulnerabilities and Exposures, often known simply as CVE, is a list of publicly disclosed computer system security flaws. CVE is a public resource that is free for download and use. This list helps IT teams prioritize their security efforts, share information, and proactively address areas of exposure or vulnerability.
So .. Is it a Vulnerability Database ?
No, CVE is not a vulnerability database; rather, it’s developed to connect different vulnerability databases and security tools. And because it’s not a vulnerability database, it doesn’t contain information on the risks, the fixes or technical data on the entry.
So .. Which DBs should we consider as a Vulnerability Database ?
1. National Vulnerability Database (NVD)
2. Vulnerability Assessment Platform (Vulners)
https://vulners.com/
3. Vulnerability Database (VulDB)
4. CVE Details
http://cvedetails.com/
There are other DBs as well but for time being .. I think these are enough (Ha Ha .. just kidding). Please refer the below link to find more information.
https://securitytrails.com/blog/what-is-cve#top-4-cve-databases
Happy Learning
#vulnerabilitymanagement
No comments:
Post a Comment