Glossary

Common Vulnerabilities and Exposures

What are Common Vulnerabilities and Exposures?

CVEs, or Common Vulnerabilities and Exposures, are standardized identifiers for known security vulnerabilities in software and hardware products.

They are used to track and catalog security issues in a consistent and structured manner with an associated severity score, making it easier for organizations, security researchers, and vendors to communicate about and address these vulnerabilities.

The Mitre Corporation maintains the catalog, which can be found here.

Why do we care about CVEs?

CVEs play a crucial role in cybersecurity by providing a common language and framework for discussing and managing security vulnerabilities. They help raise awareness of vulnerabilities, facilitate responsible disclosure, and ultimately contribute to improving the overall security of software and hardware products.

One of the most famous CVEs is CVE-2014-0160, also known as “Heartbleed”. This software bug allowed remote attackers to obtain sensitive information using crafted packets in the OpenSSL TLS implementation.

Monitoring the CVE database allows companies like Codasip to stay updated with related vulnerabilities.

Getting started with Codasip