The Embedded Kit releases a new web interface for CVE Scan, its security vulnerability scanner

Lyon, September 2024 – The Embedded Kit announces the release of the latest version of CVE Scan, its advanced security vulnerability detection and monitoring tool, at SIDO Lyon 2024. The highlight of this release is the introduction of a new interactive web interface designed to enhance decision-making with visual management of vulnerability lifecycles, detailed documentation, and report generation.

Download the press release

Communiqué de presse FR
Press release EN

Optimizing maintenance operations

The latest version of CVE Scan, already featuring SBOM generation and thorough CVE detection, now includes graphical interfaces for vulnerability assessment as well as interactive dashboards.

CVE Scan web interface - Dashboard view

This web interface empowers device manufacturers to proactively counter cyber threats by providing an overview of vulnerabilities within their embedded systems. They can visualize the total number of CVEs and their criticality levels, facilitating the prioritization of security measures. Users can access in-depth vulnerability information, including data from the NVD database for further analysis and existing patches to speed up updates. They can also incorporate manual annotations to document decisions and changes for each vulnerability, maintaining a transparent log of actions.

CVE Scan web interface - List of vulnerabilities
CVE Scan web interface - Manual annotations
"With this new interface, our goal is to provide development teams with a tool that not only identifies vulnerabilities but also offers actionable insights for their lifecycle management and mitigation. The intuitive dashboards have been designed to simplify the complex task of maintaining embedded system security."
Julien Bernet - Cybersecurity Leader - The Embedded Kit
Julien Bernet
Head of Security

Facilitating compliance with the European Cyber Resilience Act (CRA)

Under the European Cyber Resilience Act, equipment manufacturers are required to manage and address security vulnerabilities in their products by 2026. This entails systematic identification and documentation of vulnerabilities, as well as prompt management and remediation through security updates.

CVE Scan stands as a pivotal tool in expediting this process with its user-friendly web interface, dashboards, and robust report export capabilities.

"The new interface of CVE Scan is a direct response to the evolving regulatory landscape and the needs of our users. We are committed to providing a comprehensive solution that supports compliance and enhances the overall security posture of our customers."
Pierre Gal, Head of Product Development at The Embedded Kit
Pierre GAL
Head of Product Development, The Embedded Kit

For more information, contact us at contact@theembeddedkit.io or come see us at SIDO Lyon 2024 on booth 0422.

Additional resources:

About The Embedded Kit

The Embedded Kit, a Witekio company, provides everything equipment manufacturers need to build, connect, test, and secure embedded systems. Its four off-the-shelf products (Welma Yocto Linux, Kamea IoT, Pluma automated testing and CVE Scan) are designed specifically for device-makers, to ease and accelerate their product development while ensuring full source code control.

Related content

Discover more from The Embedded Kit

Subscribe now to keep reading and get access to the full archive.

Continue reading