Posted On: May 2, 2023
Amazon Inspector now allows customers to search its vulnerability intelligence database if any of the Inspector scanning types is activated. With this expanded capability, customers can retrieve the details for any vulnerability stored in Inspector vulnerability database and covered by Inspector’s scanning engine by simply providing a Common Vulnerability and Enumerations (CVE) ID, for example, “CVE-2023-1264“. This allows customers to confirm the CVEs covered by Inspector scanning engine and do preliminary research on a CVE. Inspector customers can access the search capabilities using both Inspector console and APIs.
Amazon Inspector is a vulnerability management service that continually scans AWS workloads for software vulnerabilities and unintended network exposure across your entire AWS Organization. Once activated, Amazon Inspector automatically discovers all of your Amazon Elastic Compute Cloud (EC2) instances, container images in Amazon Elastic Container Registry (ECR), and AWS Lambda functions, at scale, and continuously monitors them for known vulnerabilities, giving you a consolidated view of vulnerabilities across your compute environments. Amazon Inspector also provides a highly-contextualized vulnerability risk score by correlating vulnerability information with environmental factors such as external network accessibility to help you prioritize the highest risks to address.
Visit the AWS Regional Services list for all the regions where Amazon Inspector is currently available. All accounts can scan their environment for vulnerabilities with a free 15-day trial.
To learn more and get started with continual vulnerability scanning of your workloads, visit: