Exploitable_CVE_AllDevices

Detection Query

DeviceTvmSoftwareVulnerabilities
| summarize VulnerableDevices = make_set(DeviceName) by CveId
| join DeviceTvmSoftwareVulnerabilitiesKB on CveId
| where CvssScore > 7
| where IsExploitAvailable == 1
| extend TotalDevices = array_length(VulnerableDevices)
| project TotalDevices, CveId, VulnerabilitySeverityLevel, CvssScore, VulnerabilityDescription, VulnerableDevices

Tags