This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
  • Home
  • Advisories
    • SecurID
    • SecurID Governance & Lifecycle
  • Documentation
    • SecurID
      • Authentication Agents
        • API / SDK
        • Apache Web Server
        • Citrix StoreFront
        • Epic Hyperdrive
        • IIS Web Server
        • MFA Agent for macOS
        • MFA Agent for Windows
        • Microsoft AD FS
        • Microsoft Windows
        • PAM
      • Authentication Engine
      • Authentication Manager
      • Authenticators
        • iOS and Android
        • macOS
        • Windows
      • Cloud Authentication Service
      • Hardware Appliance
        Component Updates
      • Hardware Authenticators
        • DS100 Authenticators
        • SID700 Authenticators
        • SID800 Authenticators
      • Integrations
      • SecurID SDK
      • Software Tokens
        • Android
        • iOS
        • macOS
        • Token Converter
        • Windows
    • SecurID Governance & Lifecycle
    • Technology Partners
  • Downloads
    • SecurID
      • Authentication Agents
        • API / SDK
        • Apache Web Server
        • Citrix StoreFront
        • Epic Hyperdrive
        • IIS Web Server
        • MFA Agent for macOS
        • MFA Agent for Windows
        • Microsoft AD FS
        • Microsoft Windows
        • PAM
      • Authentication Engine
      • Authentication Manager
      • Authenticators
        • macOS
        • Windows
      • Cloud Authentication Service
      • FIDO Management Service
      • Hardware Appliance
        Component Updates
      • Hardware Authenticators
        • SID800 Authenticators
      • Integrations
      • Software Tokens
        • Android
        • iOS
        • macOS
        • Token Converter
        • Windows
    • SecurID Governance & Lifecycle
  • Community
    • SecurID
      • Blog
      • Discussions
      • Events
      • Idea Exchange
      • Knowledge Base
    • SecurID Governance & Lifecycle
      • Blog
      • Discussions
      • Events
      • Idea Exchange
      • Knowledge Base
      • Tech Hub
  • Support
    • Case Portal
      • Create New Case
      • View My Cases
      • View My Team's Cases
    • Community Support
      • Getting Started
      • News & Announcements
      • Ideas & Suggestions
      • Community Support Articles
      • Community Support Forum
    • Product Life Cycle
    • Support Information
    • General Security Advisories
  • Education
    • Blog
    • Browse Courses
      • SecurID
      • SecurID Governance & Lifecycle
    • Certification Program
    • New Product Readiness
    • Student Resources
Sign In Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Community Ideas & Suggestions

Drive innovation and crowdsource improvement by submitting enhancement requests for the community.
  • RSA Community
  • :
  • Support
  • :
  • Community Support
  • :
  • Ideas & Suggestions
  • :
  • CVE Cross Referencing on Community
  • Options
    • Subscribe to RSS Feed
    • Mark as New
    • Mark as Read
    • Bookmark
    • Subscribe
    • Printer Friendly Page
    • Report Inappropriate Content

CVE Cross Referencing on Community

4 Likes
Status: Proposed Submitted by Sean_Bowers Contributor on ‎2022-09-16 06:00 PM

Our vulnerability team is always raising the alarm on recently announced CVEs which trigger alerts in their scanning engine.  It would be invaluable to have a form on Community that we could use to submit a range of CVE numbers that the site could then cross reference against the SecurID products.  This cross referencing would allow us to find out which CVEs affect SecurID products and which ones are false positives.  Right now we have to constantly raise requests with our DSE for investigating this.

Ideally this cross referencing utility would look through the provided list of vulnerabilities and determine 1) are these CVEs known to RSA, 2) exploitable or false positives, 3) what version and patch level remediates and issue, and 4) a link to KB(s) that would outline RSA's response to the CVE(s).

Labels
  • Administration
Tags (2)
  • Tags:
  • CVE
  • Vulnerability
Share

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

  • Comment
Completed Ideas
  • RSA Link "Your Content"

  • Logs delivery

View All ≫

Idea Statuses

Proposed 31
Information Requested 1
New 6
Duplicate 1
Approved 1
Already Offered 1
Powered by Khoros
  • Blog
  • Events
  • Discussions
  • Idea Exchange
  • Knowledge Base
  • Case Portal
  • Community Support
  • Product Life Cycle
  • Support Information
  • Customer Success
  • About the Community
  • Terms & Conditions
  • Privacy Statement
  • Provide Feedback
© 2023 RSA Security LLC or its affiliates. All rights reserved.