You can determine if Twistlock offers coverage for a specific CVE by using the search interface in Console.

1. Search criteria

The CVE ID syntax is:

CVE-YYYY-NNNN

Where:

CVE

CVE-ID prefix.

YYYY

Calendar year.

NNNN

Numeric digits. This field has a variable length, but the minimum length is four digits.

2. Searching for a specific CVE

To search for a specific vulnerability:

Procedure

  1. Open Console, then go to Monitor > Vulnerabilities > CVE Viewer.

  2. In the query text box in the top right, enter a CVE ID.

    For example, enter CVE-2015-1345.

    If Twistlock has coverage for the queried vulnerability, details are listed in the results table.

    search cves results

3. Whitelisting a CVE

Whitelisting of CVEs is done directly as a policy.