This guide will walk you through how to effectively use the CVE Details page to deep dive into individual CVEs. The CVE Details page provides you with more context to assess and respond to vulnerabilities.
Overview

- CVSS (v3 & v2)
Defaults to CVSS v3, or CVSS v2 for older CVEs without v3 assigned. - EPSS
Exploit Prediction Scoring System (EPSS) attempts to calculate how likely a CVE is to be exploited within the next 30 days. - Vendors & Products
Details on the associated vendors and products - Risk Rating
A rating applied by Cytidel’s algorithm that analyses the data for each CVE. You can find more info on Cytidel’s Risk Rating here. - Linked CVEs
View CVEs that are associated with the currently view CVEs
News & Social Mentions
Overview of the number of news and social mentions in the past 24 hours, 48 hours, 7 days and 30 days.
Vendors & Products
Details on the associated vendors and products.
Potential Threat Groups
A list of any associated threat groups that Cytidel’s CTI team have tagged for the CVE.
Cytidel Spotlight Notes
Cytidel updates their CVE Spotlight each week, identifying the top trending CVEs that organisations need to keep an eye on the most. Every CVE added to the Spotlight is analysed by our CTI analysts, who publish analysis and remediation steps to RECON.
Event Timeline
Key events tracked by Cytidel, including EPSS charges, POCs, exploits and trending data.
Potential POCs & Exploits
Click on a Proof-of-Concept source link to view it in a new tab.
*Note: caution is advised whenever researching potential malware or exploits.
Related Advisories, News & Content
Click on a news or content link to open the article in a new tab.
CPEs
CPE is NVD’s structured naming scheme for IT systems, software and packages.
