Vulnerability Intelligence: Vulnerability Evidence – Bitsight Knowledge Base

Get a view on vulnerabilities found at specific companies.

Map Vulnerability Evidence to the Vulnerability Catalog to match high severity vulnerabilities to companies with high and low confidence.
Map Vulnerability Evidence to the Company Catalog for detailed company metadata on exposed entities.

Field	Description
company_guid String [`entity_guid`]	The unique identifier of the company.
vulnerability_name String	The name of the vulnerability, which is also used as the unique identifier for joining with data from the exposure pipeline. This may be a Common Vulnerabilities and Exposures (CVE) ID, but not always.
evidence_key_masked String	A cleaned up version of evidence_key, with a part of the IP or domain masked with xxx.
first_seen String [`YYYY-MM-DD`]	The earliest date when this evidence was seen for this vulnerability and entity.
last_seen String [`YYYY-MM-DD`]	The latest date when this evidence was seen for this vulnerability and entity.
evidence_certainty String	The presumed certainty that a specific entity or piece of evidence comes from a high- or low-confidence data source. Values: `CONFIRMED_EXPOSURE` `SUSPECTED_EXPOSURE`
exposure_detection String	If there has been at least one observation in the past 60 days, and the event has not been marked as remediated. Values: `CURRENTLY` `PREVIOUSLY`

Related articles