CVE Module (Concept and Principles)

Medulla has introduced a new feature that allows the inventory database to be compared with CVE search APIs based on three CVE database models: NVD (U.S.), CIRCL (Luxembourg), and EUVD (European Union).

This real-time comparison of the inventory database with these three databases enables the detection of all CVE-related anomalies and provides system administrators and security teams with visibility into vulnerabilities on workstations linked to applications that are out of date or need to be updated across the network.

This module allows you to perform the following actions:

View and launch a vulnerability scan across the entire fleet of machines managed in the Medulla interface
View and launch a vulnerability scan by entity.
View and launch a vulnerability scan by group.
View the results of all CVEs across the fleet.

For each CVE reported in the module, we organize a ranking based on the severity priority of the vulnerability:

Low priority
Medium priority
High priority
Critical priority

A banner at the top of the module page provides a summary and an overview of the status of security vulnerabilities across the fleet.

This banner displays:

The total number of CVEs across the fleet.
The number of critical CVEs
The number of high-severity CVEs
The number of medium-severity CVEs
The number of low-severity CVEs
The number of affected machines.

To access this module, click the security button:

Table of Contents

How to log in to Medulla

Dashboard

Updating Medulla via the interface

Kiosk

Add a profile

Medulla Kiosk

Managing Entities in Medulla

Add an entity and create users

Computers

All groups

Network Wake-up

List of uninventoried machines

Monitoring alerts

Custom Quick Action

Delete a computer

Imaging

Manage masters

Manage startup services

Default startup menu

Post-imaging scripts

How Imaging Works

Imaging profiles

Add a profile

List of profiles

Imaging Configuration

Sysprep Response File Manager

Imaging groups

List of available packages

Add a new package

Packages on the waiting list

List of deployment rules

Add a custom rule

Launch a deployment and monitor its execution

Individual and group tasks

Task Analysis

How the WSUS update module works.

Entity Compliance

Entity Compliance Tracking

Manage update lists

Upgrading to major OS versions.

Automatically approve whitelisted updates.

Microsoft Product Validation

Enable backup

Track backups

Overall statistics

Access the logs

Search and filter logs

Understanding the logs

Export logs

List of XMPP relays

Cluster List

Create a cluster

Manage rules

Quick Actions

CVE Module (Concept and Principles)

CVE operation

Results view by machine

Results view by entity

Results view by group

View all CVEs

CVE settings.

Dynamic group with multiple criteria

Application convergence (Positive convergence)

Application convergence (Negative convergence)

Software deployment

Create a package

Mastering via PXE

Getting Started with Remote Access

XMPP Console

Agent inventory

Imaging menus

CVE Module (Concept and Principles)