Vulnerabilities¶

SentriKat tracks CISA Known Exploited Vulnerabilities (KEV) and matches them against your software inventory.

Viewing Vulnerabilities¶

All Vulnerabilities¶

Go to Vulnerabilities to see all KEV entries:

Filter by severity, due date, ransomware status
Search by CVE ID or description
Sort by various columns

Matched Vulnerabilities¶

The Dashboard shows vulnerabilities that match your products.

Vulnerability Details¶

Click any CVE to view:

CVE ID: Unique identifier
Description: What the vulnerability does
Vendor/Product: Affected software
CVSS Score: Severity rating (0-10)
EPSS Score: Exploit prediction (0-1)
Due Date: CISA remediation deadline
Ransomware: Known ransomware association
Affected Products: Your matched products

Priority Calculation¶

SentriKat calculates priority based on:

if ransomware_flag:
    priority = "Critical"
elif due_date <= 7_days:
    priority = "Critical"
elif cvss >= 9.0 or due_date <= 30_days:
    priority = "High"
elif cvss >= 7.0:
    priority = "Medium"
else:
    priority = "Low"

Acknowledging Vulnerabilities¶

When you've addressed a vulnerability:

Single Acknowledgment¶

Click the vulnerability
Click Acknowledge
(Optional) Add a note
Save

Bulk Acknowledge by CVE¶

Acknowledge all matches for a CVE:

Click Acknowledge by CVE
Select CVE
Confirm

Auto-Acknowledgment¶

Configure automatic acknowledgment:

Go to Settings → Auto-Acknowledge
Set rules:
By product version (patched versions)
By organization
By age threshold

Snoozing¶

Temporarily hide a vulnerability:

Click Snooze
Select duration (1-90 days)
(Optional) Add reason
Confirm

Snoozed vulnerabilities: - Don't appear in dashboard counts - Don't trigger alerts - Reappear after snooze expires

EPSS Scoring¶

The Exploit Prediction Scoring System (EPSS) predicts likelihood of exploitation:

Score	Interpretation
0.9+	Very likely to be exploited
0.7-0.9	Likely to be exploited
0.3-0.7	Moderate likelihood
0.1-0.3	Lower likelihood
<0.1	Unlikely (but still in KEV!)

KEV vs EPSS

All KEV entries are actively exploited. EPSS helps prioritize among them.

Sync Status¶

Check KEV sync status:

Go to Admin → Settings
View Last Sync timestamp
View Sync History for details

Trigger manual sync:

curl -X POST http://localhost:5000/api/sync \
  -H "Authorization: Bearer YOUR_TOKEN"

Export¶

Export vulnerability data:

Apply filters
Click Export
Choose format (CSV, JSON, PDF)

API Access¶

Query vulnerabilities via API:

# Get all vulnerabilities
curl http://localhost:5000/api/vulnerabilities \
  -H "Authorization: Bearer YOUR_TOKEN"

# Get statistics
curl http://localhost:5000/api/vulnerabilities/stats \
  -H "Authorization: Bearer YOUR_TOKEN"

See API Reference for details.