A new AI generated vulnerability description is now in public preview
February 2024 Update
Vulnerable components
Defender Vulnerability Management now provides the ability to identify, report on, and recommend remediation for common, proprietary, and open-source software components and dependencies known to have had security issues in the past. For more information, see Vulnerable components.
Request of CVE support
You can now request for support to be added to Defender Vulnerability Management for a particular Common Vulnerabilities and Exposures (CVE). For more information, see Request CVE support.
Vulnerability details updates
- Common Vulnerabilities and Exposures (CVE) AI generated description (Public Preview): A new AI generated vulnerability description is now in public preview. It appears on the vulnerability details page for a CVE and provide detailed information on the vulnerability, its impact, recommended remediation steps, and any additional information, if available.
- CVSS vector string: The CVSS vector string is a text representation of the CVSS score. It is commonly used to record or transfer CVSS metric information in a concise and machine-readable form. This string is now represented in the portal for every weakness, and can be pulled via the List vulnerabilities API and Advanced Hunting. For more information on the CVSS Vector, see Common Vulnerability Scoring System