Allow the ability to show potential vulnerabilities on end user my device page

fleetdm / fleet

Open-source platform for IT, security, and infrastructure teams. (Linux, macOS, Chrome, Windows, cloud, data center)

https://fleetdm.com

Other

2.69k stars 383 forks source link

Allow the ability to show potential vulnerabilities on end user my device page #18828

Open willmayhone88 opened 2 months ago

willmayhone88 commented 2 months ago

Problem

TODO Currently only Fleet admins have the ability to view vulnerabilities in Fleet, and vulnerably software/hosts. With the My Device page, being able to already show failed policies, an extension to this could be to show vulnerability information to end users via the My Device page. This can help give end users visibilities to potentially vulnerable software on their devices.

Potential solutions

Allow the ability to show vulnerability information to host devices, via an option on the Software tab
Have a My Device global settings page in settings, where a Fleet admin can choose other items to show or hide for end users.

noahtalerman commented 2 months ago

show vulnerability information to end users via the My Device page.

Hey @willmayhone88, today end users can see which software is vulnerable on their My device page. The end user can see the CVEs.

Here's the Software tab on my Mac's My device page: Screenshot 2024-05-09 at 9 51 12 AM

Closing this issue. Please re-open if I'm misunderstanding the request.

fleet-release commented 2 months ago

Vulnerabilities, Visible to end users, Security blooms.

willmayhone88 commented 2 months ago

@noahtalerman reopening, as I probably didn't add as many details. While the end user can see the vulnerability, they just get the vulnerability number. The request was for it to also be a clickable link that can provide more information on the CVE, similar to how we can click that in the Fleet UI and it links externally to NVD.