Manualshelf

Product manual

ManualsBrandsGFI ManualsSoftwareLanGuard, Add, 25-49IP, 1Y, ENG
261262263264265266267268269270
GFI LanGuard 18 Appendix 2 - Certifications | 261
Note
For an in–depth understanding of CVE compatibility refer to the complete list of CVE
requirements available at http://go.gfi.com/?pageid=LAN_CVE_Requirements
18.2.2 About CVE and CAN
CVE names (also called "CVE numbers," "CVE–IDs," and "CVEs") are unique, common identifiers for
publicly known information security vulnerabilities. CVE names have "entry" or "candidate" status.
Entry status indicates that the CVE name has been accepted to the CVE List while candidate status
(also called "candidates," "candidate numbers," or "CANs") indicates that the name is under review for
inclusion in the list.
Each CVE name includes the following:
CVE identifier number (i.e. "CVE19990067").
Indication of "entry" or "candidate" status.
Brief description of the security vulnerability or exposure.
Any pertinent references (i.e., vulnerability reports and advisories or OVAL–ID).
Note
For an in–depth understanding of CVE names and CANs, refer to:
http://go.gfi.com/?pageid=cvecert
18.2.3 Searching for CVE Entries
CVE entries can be searched from the Scanning profiles node within the Configuration tab.
Screenshot 171: Searching for CVE information
To search for a particular CVE bulletin:
1. Specify the bulletin name (for example, CVE–20052126) in the search tool entry box included at
the bottom of the right pane.
2. Click on Find to start searching for your entry.
18.2.4 Obtaining CVE Names
CVE entry names can be obtained through the GFI LanGuard user interface from within the Scanning
profiles node within the Configuration tab. By default, the CVE ID is displayed for all the
vulnerabilities that have a CVE ID.
18.2.5 Importing and Exporting CVE Data
CVE data can be exported through the impex command line tool. For more information, refer to Using
impex.exe (page 226).