You can view all application-level vulnerabilities from the Carbon Black Cloud Workload Plug-in Vulnerabilities tab. The Windows Apps tab displays a list of application-level vulnerabilities for the virtual machines having a Windows operating system. The Linux Apps tab displays a list of application-level vulnerabilities for the virtual machines having a Linux operating system. The tab of the virtual machine displays a list of application-level vulnerabilities for that particular virtual machine.
- Go to the tab.
- Click the App tab.
Vulnerabilities for the actively running applications on the VM are displayed. You can filter the columns using the filter icon.
For your quick reference, vendor and product information are provided. The Version and Fixed By column display the version and the build number in which the listed vulnerability is fixed. You must upgrade to the listed version and the build number to resolve the vulnerability. You can also look at the CVE-ID and view the external National Vulnerability Database (https://nvd.nist.gov/) website.
The Fixed By column may be empty if there is no update available from the product to fix the vulnerability or Carbon Black does not have enough information to point to a specific resolution.