Qualys today announced that its QualysGuard Vulnerability Management (VM) now includes correlated exploitability information from real-time feeds to provide customers with up-to-date references to exploits and related security resources. With this new addition, customers running vulnerability scans can view the latest correlated exploits from third party vendors including Core Security, Immunity, and related exploit information from Metasploit and The Exploit-DataBase.
Previously, when running vulnerability scans, users would be presented with a list of Common Vulnerabilities and Exposures (CVEs), and have to manually look up exploits for each CVE, a time consuming process. With the new features, QualysGuard VM scans automatically, producing a list of correlated exploits for each CVE, using a databases of tested exploits from several vendors including Core Security, Immunity, The Exploit-DataBase or Metasploit.
The new exploitability correlation feature includes:
• Live exploit feeds from Core Security, Immunity (and their partners Agora, Dsquare, Enable Security, White Phosphorous), Metasploit and The Exploit-DataBase. Customers can choose the source of exploit data.
• An “Exploitability” column in the QualysGuard KnowledgeBase indicating whether exploitability information is available for the vulnerability from third party vendors and/or publicly available sources.
• Exploit details for any vulnerability selected, including the CVE reference, a description of the exploit provided by the source and a link to the exploit when available.
• The ability to include exploitability information for vulnerabilities in scan reports.
The new feature is available immediately in QualysGuard Vulnerability Management.