Not too long ago we added the EPSS (Exploit Prediction Scoring System) metric to vectors that have a CVE as their first tag. We wanted to provide you with an insight into the likelihood of this vector being exploited. In this release we have taken it a step further and added an EPSS score to all the Vector tags on the platform, so every vector has an EPSS score, and added a new metric to assets which is based on the highest EPSS score out of all the vectors that are attached to an asset and provide an Exploitation likelihood score for the asset.
We heard you about the Vector Breakdown feature in the Dashboard screen and that it was somewhat counterintuitive, so we gave it an update and now it will better help you find the vector you’re looking for.
The left side still represents all the vector tags that are present on the target, clicking on one of them will show on the right side a list of all the vectors that have this tag. Clicking on a vector will take you to the Vectors screen with the selected vector filtered.
The Asset and Vector identifiers were added so you can easily differentiate between similar vectors, now we added them to all the reports, relevant external API routes and email alerts as well.
You can now export all the data on the Discovery screen into JSON format. Exporting to JSON is limited to 100 items per file due to size limitations.