Asset Criticality — The criticality of the asset to your daily operations. For example, None, Low, or Critical. The higher the criticality, the larger the business disruption in the event of an incident.

For more information, see Edit asset criticality.

Asset OS Type — The OS type of the asset where the vulnerability was discovered. Options include: Linux, macOS, Windows, or Unknown if a non-standard OS is identified.

Assignee — The user assigned to remediate the risk.

CISA KEV — Indicates whether the risk is present in the Cybersecurity and Infrastructure Security Agency (CISA) Known Exploited Vulnerabilities (KEV) catalog. Options include: Yes or No.

CVE — Links to any known Common Vulnerabilities and Exposures (CVE) that this risk is part of. If multiple CVE links are provided, the primary CVE is first.

CVSSv3 — The Common Vulnerability Scoring System version 3 (CVSSv3) score, which is an open framework for communicating the severity of information security vulnerabilities. Arctic Wolf uses this framework as an objective metric for prioritizing vulnerabilities.

Due Date — The date by which the risk is expected to be resolved.

First Detected Time — The date and time when this risk was first detected.

ITSM Ticket ID — The ID of the ITSM ticket associated with the risk. This information is only available if you have your ITSM software integrated with the Unified Portal. For more information, see Integrate your ITSM solution with the Unified Portal and Create an ITSM ticket for the risks in your organization. Options include:

• - — A ticket ID does not exist.

• Ticket ID with hyperlink — The ticket number for the risk. Click the link to open the ticket in your ITSM software.

ITSM Ticket Status — The status of the ITSM ticket. This information is only available if you have your ITSM software integrated with the Unified Portal. For more information, see Integrate your ITSM solution with the Unified Portal and Create an ITSM ticket for the risks in your organization. Options include:

• - — The risk does not currently have any ITSM tickets associated with it.

• <#> Initiated — The number of tickets that were requested for the risk, but are not yet created in your ITSM software.

• <#> Created — The number of tickets created for the risk in your ITSM software.

Last Detected Time — The date and time when the risk was most recently detected. This value updates each time a source detects the risk.

Resolution Date — The date when the risk was resolved.

Resolution Reason — The action that resolved the risk. Options include:

Risk Severity — The severity of the risk, based on risk score. The higher the risk score, the more severe the risk.

Score — The risk rating. Options include any number between 0.1 and 10, with 0.1 representing the lowest risk level.

State — The state of the risk, which is manually assigned by a user.

For more information, see Risk states.

Status — The status of the risk, which is automatically assigned by the scanner. Options include: Resolved or Unresolved.

For more information, see Risk statuses.

Source — The scan that discovered the risk. Options include: Agent, IVA, or EVA.

Title — The risk name.

CISA KEV — Indicates whether the risk is present in the Cybersecurity and Infrastructure Security Agency (CISA) Known Exploited Vulnerabilities (KEV) catalog. Options include: Yes or No.

CVE — Links to any known Common Vulnerabilities and Exposures (CVE) that this risk is part of. If multiple CVE links are provided, the primary CVE is first.

CVSSv3 — The Common Vulnerability Scoring System version 3 (CVSSv3) score, which is an open framework for communicating the severity of information security vulnerabilities. Arctic Wolf uses this framework as an objective metric for prioritizing vulnerabilities.

First Detected Time — The date and time when this risk was first detected.

Last Detected Time — The date and time when the risk was most recently detected. This value updates each time a source detects the risk.

Resolved Risks — The number of risks that are resolved. Click the link to view these risks in the Risks table on the All tab.

Risk Severity — The severity of the risk, based on risk score. The higher the risk score, the more severe the risk.

Score — The risk rating. Options include any number between 0.1 and 10, with 0.1 representing the lowest risk level.

Source — The scan that discovered the risk. Options include: Agent, IVA, or EVA.

Title — The risk name.

Unresolved Risks — The number of risks that are not resolved. Click the link to view these risks in the Risks table on the All tab.

Vulnerability Publish Time — The date when the vulnerability was first identified.

Vulnerability Update Time — The date when the vulnerability details were last changed.

Asset OS Type — The OS type of the asset where the vulnerability was discovered. Options include: Linux, macOS, Windows, or Unknown if a non-standard OS is identified.

CISA KEV — Indicates whether the risk is present in the Cybersecurity and Infrastructure Security Agency (CISA) Known Exploited Vulnerabilities (KEV) catalog. Options include: Yes or No.

For more information, see View your risk score.

Unresolved Risks — The number of risks that are not resolved. Click the link to view these risks in the Risks table on the All tab.