1. Splashtop Business - Support
  2. Usage & Deployment
  3. Endpoint Management Features

Vulnerability Page

Avatar
Karen - Splashtop

Introduction

The Vulnerability Page offers a centralized view of known security vulnerabilities affecting your managed endpoints. It helps IT and security teams identify, assess, and prioritize threats using CVE data, AI-evaluated risk levels, exploit status, and severity scores. With built-in filters and search capabilities, this page supports informed decision-making and efficient remediation planning.

Start with the interactive demo to walk through key setup steps and core workflows:

Interactive Demo

Or use this guide below to explore our Vulnerabilities page and features with detailed screenshots.

Supported Subscriptions

Your team must have Splashtop Autonomous Endpoint Management (AEM) enabled.

Page is visible to Owner, Super Admin, and Admin roles.

Overview of the Vulnerability Page

 

CVE ID
The unique identifier for the vulnerability, as listed in the Common Vulnerabilities and Exposures (CVE) database (e.g., CVE-2024-12345).

Known Exploit (KEV)
Indicates whether a known, active exploit exists for the vulnerability.

  • Yes: The issue is known to be exploited in the wild.
  • No: No confirmed active exploits at this time.

CVSS
The Common Vulnerability Scoring System score (0–10) that measures the technical severity of a vulnerability based on standardized criteria (e.g., attack complexity, impact, required privileges).

Risk (AI Evaluated)

An AI-assessed risk level that reflects the potential impact and likelihood of exploitation in your environment. It provides additional context beyond the standard CVSS score to help with prioritization. Risk level can be Severe, Medium, Low, Unrated. Unrated means the AI has not yet generated a risk evaluation, or there is insufficient information to determine a risk level.

Published Date
The date when the vulnerability was first publicly disclosed. Older vulnerabilities may already have patches available.

Computers
The number of systems where the vulnerability has been detected.

Affected Products
The operating system version running on the affected endpoint.

Filter and Search

Use filter to quickly find vulnerabilities by Known Exploit, CVSS or Publish Date. Use Search for specific CVE ID or Affected OS.

Click a row to show details.

 

EPSS Score (Exploit Prediction Scoring System)

The EPSS score — short for Exploit Prediction Scoring System — estimates the likelihood that a specific vulnerability (CVE) will be widely exploited in the wild within a given time frame (usually the next 30 days).

  • Range: percentage, 0%–100%
  • Meaning:
    • Higher scores = greater probability of broad real-world exploitation
    • Lower scores = less likely to be broadly exploited

EPSS is maintained by the FIRST.org community and complements the CVSS score:

  • CVSS measures technical severity (how bad it could be).
  • EPSS measures exploit likelihood (how likely it is to be exploited at scale).

Using EPSS helps prioritize patching — for example, a vulnerability with a moderate CVSS but a high EPSS score may require more urgent attention.

Details
Shows in-depth information about the selected vulnerability, including its description, external link to its NVD source. Use this tab to understand the nature and severity of the issue.

Computer Name
Lists the specific endpoint(s) where this vulnerability is detected, helping you identify which systems are affected and prioritize remediation.

OS
Displays operating system information for the affected endpoint(s), such as version and build number, to assist in verifying patch compatibility and deployment scope.

AI Brief
Provides an AI-generated summary of the vulnerability, including AI evaluated Risk (Severe, Medium, Low, Unrated), recommended action, patch available or not, attack factor / impact and more.

Localization – Click the earth icon to select your preferred language setting.

 

Supported Actions

Go to patch computers

In the opened drawer, under the Computers tab, click the link to open a new tab on the OS Patch page with the endpoint pre-filtered. This allows you to easily apply all missing patches.

 

Manage OS Patch Policies

In the opened drawer, under the OS tab, click the link to open a new tab for policy configuration.

 

More Export and Sorting features will be added at a later stage.

 

 

 

0 out of 0 found this helpful

Articles in this section

See more