The vulnerability database is a baseline against which the enterprise network
vulnerabilities, are determined. This database is collated by acquiring information from
security bulletins/errata from many of the Internet's largest and most comprehensive databases
for security exposures and vulnerabilities. This information is further thoroughly analyzed and filled-up with relevant information for vulnerability assessment.
The vulnerability database is finally published in the Central Repository Server (CRS), from where it is updated to the enterprise site on request from the Security Manager Plus web interface.
The database is periodically updated with latest information and placed in the CRS. Therefore, it is best advised to update the database periodically in order to be in sync with the latest vulnerability and patch related information.
The vulnerability database contains detailed information about publicly known security vulnerabilities and exposures , which are grouped under 'Vulnerability Knowledge Base' and provides :
risk based vulnerability prioritization.
service based vulnerability classification.
remediation solution URLs.
common vulnerability exposure (CVE) IDs.
CVE (Common Vulnerabilities and Exposures) is a list of common names for publicly known vulnerabilities and exposures. The CVE Editorial board determines which vulnerabilities or exposures are included in CVE, through open and collaborative discussions. If the CVE name starts with CAN (candidate), then it is under consideration for entry into CVE.
The Vulnerability Database also contain Windows Patch related information, which are grouped separately under 'Patches Knowledge Base' and provides :
severity of the missing patch
a brief description of the patch
Bulletin reference link
the patch to install
The vulnerability database has to be updated as the first
step, after starting the Security Manager Plus server and logging in to the
web interface - using the update icon in the Home page
--> Security snapshot tab --> Latest Vulnerabilities section.
Subsequent update intervals can also be scheduled, from Admin tab » Configure » Vulnerability Database Updates.
Also, when the CRS at ManageEngine site has been updated , your Security Manager Plus Home page will indicate Vulnerability Updates Available.
From the web interface of Security Manager Plus, Home page --> Security snapshot tab --> Latest Vulnerabilities section, choose the update icon to update the database. Your Security Manager Plus Home page will indicate Vulnerability Database is Up-to-date once the update is complete.
Alternatively, visit Admin tab » Configure » Vulnerability Database Updates. Click on the 'Update Now' button to trigger immediate update of Security Manager Plus vulnerability database.
Visit the Admin tab » Configure » Vulnerability Database Updates for automatic scheduling for vulnerability updates.
You can view the Vulnerability Database either from Admin tab » Actions » Vulnerability Knowledge Base .
Searching based on CVE ID
The Vulnerability Database can be searched based on CVE ID. In order to perform a CVE ID based search, perform the following steps :
You can view the Patch Database either from Admin tab »
Configure » Patches Knowledge Base