Docs

Browse docs sections

Vulnerability Management

Prioritize, contextualize, and communicate patching decisions with confidence.

Use Canoma to rank vulnerabilities by real-world exposure and operational impact, not CVSS score alone.

Prioritization Inputs

Exploit and Exposure Signals

Active exploitation evidence.
Internet exposure and asset criticality.

Operational Constraints

Availability of stable mitigation.
Compliance impact.

Patch Decision Query

bash

Rank these CVEs for patch priority in our environment: CVE-2025-AAAA, CVE-2025-BBBB, CVE-2025-CCCC. Use exploit activity, business impact, and remediation complexity.

Recommended Output Structure

Request This Format

Priority tier for each CVE.
Evidence summary and confidence level.
Mitigation or patch recommendation with timeline.
Explicit assumptions that need validation.

← SOC Analyst Playbook

Threat Intelligence →

Built with markdoc.dev.