Talos Takes Ep. #92: Kenna 101 — How to read a CVE
Talos Takes · Jon Munshaw (host) and Jerry Gamblin (speaker)
August 12, 20229m 56s
Audio is streamed directly from the publisher (buzzsprout.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
Continuing our “Kenna 101” series, Jon is joined this week by Jerry Gamblin, Kenna’s director of security research. Jerry is an expert at all things CVE’s, so we reflect on reading vulnerability reports and analyzing specific CVEs. We discuss if “severity” scores even really mean anything, and how to interpret a maximum 10/10 score versus an attacker vector or type of vulnerability.
Topics
Kennavulnerabilitiespatchingexploits