Skip to main content

Analyzing security fixes

The Analytics panel contains report cards that shows analytics about security fixes for known common vulnerabilities and exposures (CVEs).

To display the CVE reports, click Analytics (Analytics icon) > Predefined Analytics, and then click Security Fixes to display the related analytics cards.

Security Fixes

This report card includes the following statistics and graphs.
  • A circular graph that shows the number of managed devices that have common vulnerabilities and exposures (CVEs) for which a security fix is available, by the highest CVE severity
    • Critical. Number of devices that have at least one critical CVE
    • Non-critical. Number of devices that have at least one high, medium, or low CVE but no critical CVEs
    • Protected. Number of devices that have no known CVEs and are protected
  • A circular graph that shows the number of unique CVEs for which security fixes are available, by severity (critical, high, medium, or low)

You can hover over each colored bar in the circular graphs to get more information about the state. You can also click the number next to each state to view a list of all devices that fit the criteria.

Devices

The Devices card lists the total number of CVEs for which a security fix is available and the highest severity of CVEs for each device. You can expand the device to view a list of components in that device that have security fixes and the number of security fixes that are available from firmware updates that are downloaded in the updates repository.

You can click the number of security fixes to open a dialog with a filtered list of applicable CVEs for that component. From that dialog, you can click the CVE link to get detailed information about that CVE on the web.

You can show or hide the Devices card by clicking the Show/Hide Devices toggle. The toggle changes to Show Devices automatically when you click a number in the graphs.