Skip to main content

Device Vulnerabilities

The Vulnerabilities tab lists the known CVEs affecting this device, matched against its installed software, OS, and (for network gear) firmware. It's the per‑device slice of the org‑wide Vulnerabilities view.

What you see

  • CVE list — each vulnerability with severity (CVSS), the affected product/version, and a short description.
  • KEV badge — CVEs on CISA's Known Exploited Vulnerabilities list are flagged so you fix actively‑exploited issues first.
  • Source — where the finding came from (OS package data, missing‑patch check, NVD match, or firmware advisory for network devices).

Fixing

  • For OS/software CVEs, the fix is usually a pending update — apply it from Overview or Bulk Update.
  • For firmware CVEs on switches/routers/firewalls, DashX also surfaces a recommended/EOL version to upgrade toward.

Findings refresh after inventory/SNMP polls and vulnerability scans; see Scan History for timing.

tip

Sort by KEV, then severity — that's your real patch queue, not the raw CVE count.