Posted On: Jul 31, 2023
Amazon Inspector now provides enhanced vulnerability intelligence as a part of its findings. The enhanced vulnerability intelligence includes names of known malware kits used to exploit a vulnerability, mapping to MITRE ATT&CK® framework, the date Cybersecurity and Infrastructure Security Agency (CISA) added the vulnerability to Known Exploited Vulnerabilities Catalog (KVEC), Exploit Prediction Scoring System (EPSS) score, and evidence of public events associated with a vulnerability. This expands the currently provided vulnerability intelligence such as Common Vulnerability Scoring System (CVSS) score and known public exploit information. Inspector collects this information from internal Amazon research, CISA, and our partner, Recorded Future. You can access the enhanced vulnerability intelligence in the finding details within in the Amazon Inspector console
Enhanced vulnerability intelligence is available in all regions where Amazon Inspector is available.
Amazon Inspector is a vulnerability management service that continually scans AWS workloads for software vulnerabilities and unintended network exposure across your entire AWS Organization. Once activated, Amazon Inspector automatically discovers all of your Amazon Elastic Compute Cloud (EC2) instances, container images in Amazon Elastic Container Registry (ECR), and AWS Lambda functions, at scale, and continuously monitors them for known vulnerabilities, giving you a consolidated view of vulnerabilities across your compute environments. Amazon Inspector also provides a highly-contextualized vulnerability risk score by correlating vulnerability information with environmental factors such as external network accessibility to help you prioritize the highest risks to address.
To learn more and get started with continual vulnerability scanning of your workloads, visit: