Security Overview
Vulnerability management, compliance posture, and security event monitoring across the platform.
Open Vulnerabilities
4
1 critical
Critical (Open)
1
needs immediate patching
Compliance Score
87%
+3%vs last month
Mean Time to Patch
4.2days
-18%improving
Vulnerabilities by Severity
All known CVEs grouped by CVSS
5Total
Vulnerabilities by Status
Remediation state distribution
Security Events Trend
Audit events per day (last 30 days)
Top Vulnerable Assets
Assets with most known CVEs
Compliance Posture
Framework control pass rates
SOC 2 Type II
On Track88%
ISO 27001
On Track92%
GDPR
At Risk76%
HIPAA
On Track81%
PCI DSS
Action Needed64%
Overall posture
87% Improving
Vulnerability Register
All known CVEs with severity, status, and owner
CVE | Title | Severity | Status | Owner |
|---|---|---|---|---|
CVE-2026-3141 VULN-2026-045 | OpenSSL 3.2.1 Buffer Overflow api-gw-prod-us-east-1a-01 | Critical9.8 | in progress | |
CVE-2026-3140 VULN-2026-044 | Log4j 2.17.0 Information Disclosure checkout-prod-us-east-1a-01 | High7.5 | open | |
CVE-2026-3139 VULN-2026-043 | Node.js HTTP Request Smuggling billing-prod-us-east-1a-01 | High7.4 | patched | |
CVE-2026-3138 VULN-2026-042 | PostgreSQL Privilege Escalation db-primary-us-east-1a-01 | Medium6.5 | open | |
CVE-2026-3137 VULN-2026-041 | Redis Lua Sandbox Bypass redis-node-01 | Medium6.2 | in progress |
Recent Security Activity
Latest audit-trail events
Marcus Andersonincident.update_public
incident · inc1 · from 10.42.18.92
Marcus Andersonincident.link_runbook
incident · inc1 · from 10.42.18.92
Marcus Andersonincident.add_service
incident · inc1 · from 10.42.18.92
Marcus Andersonincident.acknowledge
incident · inc1 · from 10.42.18.92
Daniel Vargasalert.silence
alert · al5 · from 10.42.18.14
Priya Ramandeployment.approve
deployment · d6 · from 10.42.18.31