Faddom

Faddom can warn you of any CVEs that affect your systems. This provides you with a view of all the detected vulnerabilities, which servers they affect and which software and versions they are relevant for. Limited internet access is required for this feature.

CVE stands for Common Vulnerabilities and Exposures. When a security vulnerability is discovered, researchers or vendors can request a CVE ID from the CVE Numbering Authorities (CNAs) to help facilitate communication and awareness of the issue. These identifiers are used to provide a standardized way of referencing and discussing vulnerabilities across different platforms, tools, and information sources. This helps in understanding, tracking, and managing vulnerabilities in software and hardware systems.

Faddom requires access to <a href="https://api.support.faddom.com/" rel="nofollow noopener noreferrer" target="_blank">https://api.support.faddom.com</a> to read the updated CVE database. Faddom only receives the details of the software and version that is in your environment and which operating system it is installed on. No server or customer information is transmitted. If an HTTP proxy is setup in the Global Parameters then Faddom will access the API through that proxy.

<a href="https://intercom.help/faddom/en/articles/9059516" rel="nofollow noopener noreferrer" target="_blank">Setting Up Software And CVE Discovery</a> is done and working

1. Faddom requires access to <a href="https://api.support.faddom.com/" rel="nofollow noopener noreferrer" target="_blank">https://api.support.faddom.com</a> to read the updated CVE database. Faddom only receives the details of the software and version that is in your environment and which operating system it is installed on. No server or customer information is transmitted. If an HTTP proxy is setup in the Global Parameters then Faddom will access the API through that proxy.
2. <a href="https://intercom.help/faddom/en/articles/9059516" rel="nofollow noopener noreferrer" target="_blank">Setting Up Software And CVE Discovery</a> is done and working

You can see on the main dashboard of Faddom the number of vulnerabilities detected

By clicking on this number, you are then taken to the CVE screen within the Security Dashboard. Alternatively, you can select Secure &gt; CVEs

From this dashboard you can either apply a filter to search for CVEs by Score (the default order displayed is Critical, High, Medium, Low), server, or application map along with a date.

You can click on the arrow next to the CVE name to get more information on the CVE, which includes a link to the CVE, the maps with affected servers, as well as a score as to how critical the CVE is.

If, for some reason, you wish to ignore a specific CVE, you can select one or more, then click Ignore Selected CVEs

If you wish to restore CVEs that you have previously ignored, you can reverse this by clicking on X Ignored CVEs, selecting the ignored CVEs and click Don't Ignore CVEs

1. You can see on the main dashboard of Faddom the number of vulnerabilities detected 
 

2. By clicking on this number, you are then taken to the CVE screen within the Security Dashboard. Alternatively, you can select Secure &gt; CVEs 
 
 CVE dashboardc.gif
 
3. From this dashboard you can either apply a filter to search for CVEs by Score (the default order displayed is Critical, High, Medium, Low), server, or application map along with a date. 
 

4. You can click on the arrow next to the CVE name to get more information on the CVE, which includes a link to the CVE, the maps with affected servers, as well as a score as to how critical the CVE is.
 
 CVE score.gif
5. If, for some reason, you wish to ignore a specific CVE, you can select one or more, then click Ignore Selected CVEs 
 
 ignore cves.gif
6. If you wish to restore CVEs that you have previously ignored, you can reverse this by clicking on X Ignored CVEs, selecting the ignored CVEs and click Don't Ignore CVEs 
 
 restore cves.gif

What Is A CVE?

Prerequisites

How to Discover CVEs