Detect, analyze, and monitor your Linux CVE (Common Vulnerabilities & Exposures) & be compliant with cybersecurity regulations.
CVE detection
- Fetch existing CVE from the NIST National Vulnerability Database (NVD) and Ubuntu CVE tracked database
- Include a meta-layer to extract a detailed inventory from your Yocto. The inventory aggregates a detailed software BOM and white-listed CVE from Yocto recipes
- Analyze your kernel configuration to sort-out non vulnerable CVE due to kernel code not compiled in your image
- Advanced match on packages names & versions
- Advanced kernel fix commit detection, with automated cherry picks detection of CVE fix from the main branch to your current branch
Automated & manual analysis
- Generates CSV reports with CVE scoring & detailed information
- Manual annotations in YML files re-used on next scan
Threats monitoring
- Easy to integrate in a CI pipeline
- Customizable dashboards for CVE detection & resolution monitoring
- Dashboard connection to Jira, to create a new issue per discovered CVE
支持的器件 | STM32MP1 |
工具类型 | Utilities |
地点 |
ST产品 |
---|
Served Countries:
欧洲, 北美