contact us

System Filters

by Jul 16, 2020

System Filters

A couple of years ago, RiskSense provided a saved quick filter for a customer who was curious about a particular set of CVEs. RiskSense quickly realized the value in single-click system filters as they help clients understand the high severity vulnerabilities in their infrastructure.

Today, RiskSense offers a broad collection of System Filters that organizations can use (listed below). For example, you can quickly find out if your hosts have popular ransomware or if one of your applications has a vulnerability on the Recorded Future Top 10 list.

System Filters

System Filters allow clients to easily filter their Hosts, Host Findings, or Application Findings by trending criteria that reveal their exposure to the top critical vulnerabilities on a regular basis. This can include Ransomware, trending CVEs, DHS CISA FBI Top 10, or Cross Site Scripting for example.

The most recent system filters added include the DHS-CISA-FBI Top 10, Ripple 20, SMBleed, SMBLost, Recorded Future Top 10 from 2016 to 2019, CVE-2020-1350, and CVE-2020-2021. You’ll also notice two system filters that make it a snap to see how your organization might be affected by the vulnerabilities covered in recent RiskSense Spotlight Reports, specifically RS 2020 Web & App Frameworks and RS 2019 Enterprise Ransomware. We took the most valuable set of vulnerabilities and made them accessible from a single click. When a system filter is applied, clients can view which findings have the greatest impact on their risk if vulnerabilities aren’t fixed.

New System Filters:

  • DHS-CISA-FBI Top 10
    • CVE-2017-11882, CVE-2017-0199, CVE-2017-5638, CVE-2012-0158, CVE-2019-0604, CVE-2017-0143, CVE-2018-4878, CVE-2017-8759, CVE-2015-1641, CVE-2018-7600
  • Open Ripple20
    • CVE-2020-11896, CVE-2020-11897, CVE-2020-11901,CVE-2020-11898, CVE-2020-11900, CVE-2020-11902, CVE-2020-11904, CVE-2020-11899, CVE-2020-11903, CVE-2020-11905, CVE-2020-11906, CVE-2020-11907, CVE-2020-11909, CVE-2020-11910, CVE-2020-11911, CVE-2020-11912, CVE-2020-11913, CVE-2020-11914, CVE-2020-11908
  • Open SMBleed
    • CVE-2020-1206
  • Open SMBLost
    • CVE-2020-1301
  • Recorded Future 2016 Top 10
    • CVE-2016-0189, CVE-2016-1019, CVE-2016-4117, CVE-2015-8651, CVE-2016-0034, CVE-2016-1010, CVE-2014-4113, CVE-2015-8446, CVE-2016-3298, CVE-2015-7645
  • Recorded Future 2017 Top 10
    • CVE-2017-0199, CVE-2016-0189, CVE-2017-0022, CVE-2016-7200, CVE-2016-7201, CVE-2015-8651, CVE-2014-6332, CVE-2016-4117, CVE-2016-1019, CVE-2017-0037
  • Recorded Future 2018 Top 10
    • “CVE-2018-8174, CVE-2018-4878, CVE-2017-11882, CVE-2017-8750, CVE-2017-0199, CVE-2016-0189, CVE-2017-8570, CVE-2018-8373, CVE-2012-0158, CVE-2015-1805
  • Recorded Future 2019 Top 10
    • CVE-2018-15982, CVE-2018-8174, CVE-2017-11882, CVE-2018-4878, CVE-2019-0752, CVE-2017-0199, CVE-2015-2419, CVE-2018-20250, CVE-2017-8750, CVE-2012-0158
  • CVE-2020-2021
  • CVE-2020-5902 F5 BIG-IP
  • CVE-2020-1350 SIGRed

Spotlight System Filters:

  • RS 2020 Web & App Frameworks
    • Description: RiskSense 2020 Spotlight Report: Most Weaponized Weaknesses 2010-2019
    • CWEs = 79, 20, 264, 119, 94, 89, 200, 22, 189, 399, 284, 352, 502, 77, 787, 134, 78, 125, 310, 190, 287, 19, 59
  • RS 2019 Enterprise Ransomware
    • Description: RiskSense 2019 Spotlight Report: The Ransomware Top 10
    • CVE-2010-0738, CVE-2012-1723, CVE-2012-0507, CVE-2015-8651, CVE-2017-0143, CVE-2017-0144, CVE-2017-0145, CVE-2017-0146, CVE-2017-0147, CVE-2017-0148

 Comprehensive List of System Filters on Findings Page:

  • DHS-CISA-FBI Top 10
  • Open CVE-2020-1350
  • Open CVE-2020-2021
  • Open CVE-2020-5902
  • Open Ripple20
  • Open SMBleed
  • Open SMBLost
  • Recorded Future 2016 Top 10
  • Recorded Future 2017 Top 10
  • Recorded Future 2018 Top 10
  • Recorded Future 2019 Top 10
  • RiskSense Verified – RSV
  • Clear-text Credentials or Weak Encryption
  • Cross-Site Scripting
  • SQL Injection
  • Open Weaponized
  • Open Ransomware
  • All Open
  • Workflow Approval Needed
  • No Assignment
  • Has Assignments
  • Severity Approval Needed
  • Open WannaCry
  • Open Apache Struts
  • Open Windows SMB RCE
  • Open Shadow Brokers
  • Open BlueBorne Attack
  • Open BlueGate
  • Open BlueKeep
  • Open Curveball
  • Open CVE-2020-0674
  • Open CVE-2020-0688
  • Open DejaBlue
  • Open Ragnarok
  • Open Ghostcat
  • Open SMBGhost
  • Open Hidden Cobra
  • Open KRACK
  • Open Meltdown and Spectre
  • Open Petya – Goldeneye
  • Open SamSam
  • Open SambaCry
  • Open Double Pulsar
  • Open EclipsedWiing
  • Open EducatedScholar
  • Open EmeraldThread
  • Open EternalRocks
  • Open EscalatePlowman
  • Open EskimoRoll
  • Open EsteemAudit
  • Open EternalBlue
  • Open EternalChampion
  • Open EternalRomance
  • Open EternalSynergy
  • Open ClientHello
  • Open EGREGIOUSBLUNDER
  • Open EPICBANANA
  • Open EXTRABACON
  • Open Freak
  • Open GHOST
  • Open Industroyer
  • Open MS15-010
  • Open MS15-011 JASBUG
  • Open MS15-014
  • Open MS15-034 HTTPsys
  • Open Shellshock
  • Open Urgent 11
  • Open VENOM

 

RiskSense Careers

Looking for a new opportunity in the growing field of Cyber Risk Management?

View Now >