I noticed that now that some findings in the CVE Search dashboard report “available in KEV content pack”
Is the content pack part of existing product bundles?
like Lifecycle, or Compliance?
Thank you
It’s an add-on that Lifecycle, Compliance, and/or Remediate customers can purchase that focuses on vulnerabilities in the CISA Known Exploited Vulnerabilities Catalog.
Here’s the documentation link for reference: https://help.hcltechsw.com/bigfix/10.0/lifecycle/Lifecycle/KEV_Content_Pack_Add-on/c_kev_overview.html
And a Wiki page detailing support by CVE: https://bigfix-wiki.hcltechsw.com/wikis/home?lang=en-us#!/wiki/BigFix%20Wiki/page/BigFix%20Known%20Exploited%20Vulnerabilities%20(KEV)%20Content%20Pack
is there more fix content in KEV addon or just a new scanning method to identify easier then what occurs normally.
Short answer: definitely more!