Skip to main content

CVE shields

Common Vulnerabilities and Exposures (CVE) provide a standardized identifier for a given vulnerability or exposure. They also provide a baseline for evaluating the coverage of your tools.

Contrast provides several CVE shields to help protect your applications that contain CVEs. CVE shields are useful for legacy applications that use vulnerable libraries that are difficult to update.

You only need CVE shields when the vulnerability isn't a common attack class like SQL injection or untrusted deserialization. In some cases, Contrast creates a CVE shield to get more data that is specific to a particular threat, even if there's an existing Protect rule that prevents the attack from occurring. This action helps provide more context into exploitation. It helps organizations map ongoing attacks to trends in the overall security ecosystem.

View CVE shields

Set modes for CVE shields