What is a CVE alert?
When a new, widely publicized vulnerability (CVE) is disclosed, YesWeHack checks your declared assets for potential exposure. If a match is detected, you receive an alert to help you react faster and mitigate risks.
How does it work?
ℹ️ You must be a Business Unit Surface Manager to subscribe to CVE alerts.
CVE Alert allows Surface Managers to "subscribe" to a vulnerability-oriented Cyber Threat Intelligence feed based on declared technologies.
The following use cases can thus be addressed:
monitor CVE impacting technologies that cannot be correctly detected by scanners (e.g., deliberately falsified or masked banners);
monitor CVE impacting non-Internet facing technologies (e.g., LAN);
monitor CVE impacting technologies chosen as part of a project right from the conception phase, in order to assess the future impact of this product on organisation’s security teams.
Subscribing to CVE alerts
Go to the “Vulnerability Center”
Click on “CVE Alert” on the left side menu
Click on “Subscribe to a technology”
Enter the CPE rule you would like to follow
ℹ️ The field is autocompleted and suggest the CPE that might match the search, user can also enter manually a CPE or modify the suggested one.
Click on a technology to open its dedicated page with the different alerts
Go to “Settings” to open the configuration panel for notifications