Vulnerability Management (CVE)

CoreSight integrates with the NIST National Vulnerability Database (NVD).

When an asset is ingested with software version information (CPE), the system automatically queries the local database to find matching CVEs. The asset's risk score is adjusted accordingly based on the highest CVSS score.