Talos Takes Ep. #92: Kenna 101 — How to read a CVE
August 12, 2022
Jon Munshaw (host) and Jerry Gamblin (speaker)
Continuing our “Kenna 101” series, Jon is joined this week by Jerry Gamblin, Kenna’s director of security research. Jerry is an expert at all things CVE’s, so we reflect on reading vulnerability reports and analyzing specific CVEs. We discuss if “severity” scores even really mean anything, and how to interpret a maximum 10/10 score versus an attacker vector or type of vulnerability.