Exploit Information#
FutureVuls provides "Alert Information" (CERT) and "exploit code" as part of its exploit-related intelligence. The existence of an exploit directly impacts a vulnerability's score and affects the prioritization of remediation efforts.
Exploit code integrated into the Metasploit-Framework, as well as verified, highly reliable exploit code, is displayed with a "Reliability: HIGH" rating. All other exploit code (such as Exploit-DB) is displayed with a "Reliability: LOW" rating.
Handling of PoC-in-GitHub (PoC repositories on GitHub)
From a reliability standpoint, PoC repository information on GitHub (PoC-in-GitHub) is excluded from exploit information and from the SSVC Exploitation determination.
Exploit Reliability#
The exploit reliability is displayed in the vulnerability and task lists. This column shows what type of exploit information has been published, including KEV information. For details on how SSVC Exploitation is derived, see How SSVC Priority is Derived.
| Exploit Reliability | Condition |
|---|---|
| HIGH (Active, high-reliability exploit code exists) | Indicates that reliable exploit information is available. - SSVC Exploitation is Active - Exploit code is available in the Metasploit-Framework - Verified, highly reliable exploit code is available |
| LOW (PoC exists) | SSVC Exploitation is PoC |
| - | SSVC Exploitation is None |
Detailed Information on Exploit Code#
Click the exploit code link to view detailed information about the exploit.
Exploit Details#
Click the link in the vulnerability details to view detailed information about the exploit.
