FAQ
FAQ
Common questions about CISA KEV alerts and how the AllBlue Dashboard delivers targeted notifications.
Getting started
How do I get notified for KEVs that affect me?
Create an account, subscribe to the vendors and products that match your stack, and enable email alerts if you want notifications pushed to your inbox. When a new KEV matches your subscriptions, it appears in your dashboard and can trigger an email.
Is the AllBlue Dashboard free?
Yes. It is free because it is useful.
KEVs and vulnerability terms
What is a CISA KEV?
A CISA Known Exploited Vulnerability is a vulnerability included in the KEV catalog because exploitation is known to occur.
Why are KEVs dangerous?
Known exploitation means attackers already have working techniques. Automation and scanning increase the chance of opportunistic targeting, especially for exposed services and widely deployed software.
What is the difference between a KEV and a CVE?
A CVE is an identifier for a vulnerability. A KEV is a vulnerability included in the KEV catalog due to known exploitation. Many CVEs exist. KEVs are a high-signal subset.
What is a CWE and why is it not the main alert mechanism?
CWE describes a category of weakness. It helps prevention and secure design, but it is broader than a specific exploited vulnerability.
Alerts and subscriptions
How can I get alerted to critical exploited vulnerabilities?
KEVs are a curated set of vulnerabilities known to be exploited in the wild. The AllBlue Dashboard filters that signal to your subscriptions so you can stay current without tracking broad feeds.
Does the AllBlue Dashboard scan my environment?
No. It helps you track exploited vulnerabilities relevant to your stack, but it does not scan your systems or confirm exposure.
How do I verify whether I am impacted by a matching KEV?
Confirm the affected product and version, evaluate whether it exists in your environment, and assess exposure. Prioritize anything internet-facing.
How quickly should I act on a new matching KEV?
Triage immediately. If it touches an exposed or critical component, prioritize mitigation or patching. If not affected, document the decision and move on.
Do you support alerts for vendors like Microsoft and Google?
Yes, when the vendor and product exist as subscription tags. Subscribe to what you run and let the dashboard surface matching KEVs.
Can I subscribe to open source projects and libraries?
Yes, when the vendor and product exist as subscription tags. Subscribe to the tags that represent what you deploy and support.
Data and privacy
Will I receive marketing emails?
No. Email is used for verification, password reset, and alert delivery when enabled.
Do you sell or share my data?
We do not sell personal information. Data is shared only with service providers required to operate the service, such as hosting and email delivery when alerts are enabled.
Can I delete my account and data?
Yes. You can request deletion of your account and associated data. See /privacy for details.
Still need help?
If a question is not answered here, email security@midasgold.ai.