You can view all application-level vulnerabilities from the Carbon Black Cloud Workload Plug-in Vulnerabilities tab.
The Windows Apps tab displays a list of application-level vulnerabilities for virtual machines that have a Windows operating system. The Linux Apps tab displays a list of application-level vulnerabilities for virtual machines that have a Linux operating system. The tab of the virtual machine displays a list of application-level vulnerabilities for that virtual machine.
- Open the tab.
- Click the App tab.
Vulnerabilities for the actively running applications are displayed. You can filter the columns using the filter icon.
Vendor and product information are provided. The Version and Fixed By column display the version and the build number in which the listed vulnerability is fixed. You must upgrade to the listed version and the build number to resolve the vulnerability. You can also look at the CVE-ID and view the external National Vulnerability Database (https://nvd.nist.gov/) website.
The Fixed By column might be empty if there is no update available from the product to fix the vulnerability or if Carbon Black does not have enough information to point to a specific resolution.