emCVE-Watch
emCVE-Watch provides a service to check the common software components in your product for security gaps.
How does emCVE-Watch work?
At the beginning, the (software) components and versions of the Linux file system to be monitored are defined. For example, libraries and tools such as systemd or bluez.
This list is reconciled daily with the newly disclosed security gaps from known CVE (Common Vulnerabilities and Exposures) databases.
Database examples:
- Debian Security
- NIST
What happens if a security vulnerability is detected?
In case of a hit, we check how critical this security gap is for your monitored product.
Depending on the severity of the security gap, a recommendation is issued as to whether and when an update needs to be rolled out to fill this gap.
What we require from you
What you get from us
- 24/7 monitoring of your software (RootFS or just parts of it) for security gaps
- Timely information on security gaps affecting your system
- Severity assessment of the security gaps related to your product
What is not included
As your reliable embedded service provider, emtrion ensures the maintenance of a secure and reliable system
Please send us an emCVE-Watch request using the contact form.