Read Ordr Security Bulletin on Volt Typhoon Advisory Read more here!

What does CVE mean?

CVE stands for Common Vulnerabilities and Exposures. CVE is a list of entries—each containing an identification number, a description, and at least one public reference—for publicly known cybersecurity vulnerabilities. CVE Entries are used in numerous cybersecurity products and services from around the world, including the U.S. National Vulnerability Database.

When a CVE is found and identified, a software company releases a patch so users can download it and repair the vulnerability. Many companies have a patch-management solution to address patching systems in their network; however, they lack a patch validation view and knowledge about the completeness of the patching event.

While there are steps one can take to manually confirm that a patch was applied to a system, Ordr SCE automates alerts on devices with vulnerabilities/exploits, recalled by manufacturers or the FDA or CareCERT, and using weak ciphers and certificates.