Skip to content

Abused Vulnerabilities

The Vulnerabilities view helps connect extortion and leak-site intelligence with abused software vulnerabilities.

Vulnerability records can include:

  • CVE identifiers
  • known exploited vulnerability references
  • affected products or vendors
  • actor or campaign context
  • related news and reporting
  • linked events or profiles where available

The goal is to make vulnerability context searchable alongside actor claims, victimology, and incident reporting.

Use the Vulnerabilities view when you need to:

  • check whether a CVE appears in extortion or exposure context
  • connect actor profiles with exploitation reporting
  • support patch-prioritization discussions with threat context
  • find news items or claims that mention a vulnerability
  • build monthly summaries of abused vulnerabilities

A vulnerability reference is intelligence context, not proof that a specific event was caused by that vulnerability. Treat it as a lead and confirm with event evidence, incident reporting, and your own telemetry.