We have used three different search strategies for specific CVE’s.
For each we get vastly different results.
Which is the more accurate method? And why is there such big difference in the results?
Option 1: is the generic looking glass symbol (“Search”) in the top bar. Entering a the CVE-XXXX-XX identifier here yields 0 assets under the header “Asset Results”. Scrolling down, we see the CVE listed in “Vulnerability Results”, clicking on that forwards us to option 2.
Option 2: Clicking on the CVE in “Vulnerability Results” opens a new windows, where under “Assets” are listed +8000 assets.
Option 3: Is advanced query, here we input vulnerability.cveids IN [‘CVE-XXXX-XX’]
Result = +5000
So depending on how we search, our results vary from 0 to 5000 to 8000.
We found no luck in explaining the difference in the documentation.