Abused Vulnerabilities
The Vulnerabilities view helps connect extortion and leak-site intelligence with abused software vulnerabilities.
What It Covers
Section titled “What It Covers”Vulnerability records can include:
- CVE identifiers
- known exploited vulnerability references
- affected products or vendors
- actor or campaign context
- related news and reporting
- linked events or profiles where available
The goal is to make vulnerability context searchable alongside actor claims, victimology, and incident reporting.
How to Use It
Section titled “How to Use It”Use the Vulnerabilities view when you need to:
- check whether a CVE appears in extortion or exposure context
- connect actor profiles with exploitation reporting
- support patch-prioritization discussions with threat context
- find news items or claims that mention a vulnerability
- build monthly summaries of abused vulnerabilities
Important Caveat
Section titled “Important Caveat”A vulnerability reference is intelligence context, not proof that a specific event was caused by that vulnerability. Treat it as a lead and confirm with event evidence, incident reporting, and your own telemetry.