About the Vigiles CVE Dashboard
  • What is this page?

    The Vigiles CVE Dashboard shows you all the CVEs affecting a specific manifest at the time the scan was performed. It allows you to filter, whitelist, and make notes about individual CVEs. You can also export the data, and download the manifest from this page.
  • What is the Summary section, and what can I do with it?

    Located at the top of the dashboard, the summary gives you an “at-a-glance” view of the number of CVEs in the scan results, and breaks the CVE counts down by status and severity. You can click the labels in each chart's legend to toggle what information is displayed.
  • How are the CVEs organized?

    First, they are divided into Unfixed and Fixed sections. Unfixed CVEs are known to affect the software at your currently used version. Most often, a CVE is labeled as fixed because a patch for the issue was detected in the manifest.

    Next, the CVEs in each panel are categorized into three tabs: RFS, Kernel, and Toolchain. This separation allows for better review of the different types of system components, especially because kernel upgrades and patches are often handled much differently than userland packages.
  • How can I learn more about a CVE?

    For more details about any CVE, simply click on the CVE ID from within the RFS, Kernel, and Toolchain tabs.