Action1, a leading provider of autonomous endpoint management (AEM) solutions, has officially announced its integration with VulnCheck NVD++, a comprehensive source of enriched CVE context, including structured CPE data.
According to certain reports, the stated enhancement treads up a long distance to strengthen Action1’s existing support for NIST NVD, CISA, vendor updates, and other intelligence feeds, thus diversifying its data sources and enabling security teams to make smarter, faster decisions in vulnerability remediation.
More on the same would reveal how, backed by comprehensive CPE data, Action1’s platform can provide a more precise brand of vulnerability matching and prioritization. This way it will be able to ensure that organizations have the accurate intelligence required for addressing the most critical vulnerabilities in their environment.
Installing further synergy into the given partnership would be Action1’s ongoing commitment to integrate diverse and authoritative data sources, such as both public and vendor-provided CVE analysis, along with continuous, reliable support for vulnerability detection, as well as risk prioritization across complex enterprise environments.
In that respect, the company also took the given opportunity to announce several new capabilities for its AEM platform.
Talk about these capabilities on a slightly deeper level, we begin from the all-new fully customizable role-based access control (RBAC) facility, which is specifically tailored to organizational needs. The stated facility caters to specialized roles like patch-only operators with update-only permissions, technicians limited to Action1’s proprietary Remote Desktop feature, reporting-only users with access to selected dashboards, while simultaneously complying with script-specific restrictions (e.g., disallowing Remote Wipe).
Next up, we have predefined vulnerability and remediation reports coming into play. These new reports basically make it possible for users to filter and group vulnerability data by severity, exploit status, published date, and remediation status. The idea here is to scale up oversight and support offline analysis through CSV export.
Another detail worth a mention is rooted in Action1’s now expanded software repository. This translates to how the company has added 20 new curated applications (15 for macOS, 5 for Windows), and therefore, reinforced its commitment towards secure, vetted patch distribution.
Then, there is a facility centered on compensating controls reporting, a facility organizations across the board can leverage to document manual compensating controls that are applied upon unpatched vulnerabilities, including attribution of who applied each control and when. This, in turn, should greatly support audit readiness and risk governance.
Hold on, we still have a few bits left to unpack, considering we haven’t yet touched upon the availability of several agent and UI enhancements, including updates to the agent download screen that streamline deployment workflows. On top of it, the scale up in question also involves Duo SSO refresh token now supporting improved login continuity.
Rounding up highlights would be Action1’s bid to generate comprehensive hardware compatibility insights. Here, users can basically come expecting a new Windows 11 readiness report, well-equipped to help organizations assess hardware compatibility and plan OS migrations efficiently.
Among other things, we ought to mention how the development in question builds upon Action1’s track-record of offering its full-featured patching solution, free of cost, for up to 200 endpoints. This particular offer has empowered small organizations to operate securely at no cost, whereas on the other hand, it has bestowed larger enterprises with a risk-free path to evaluate Action1 at scale.
“As the threat landscape evolves, so must our approach to autonomous endpoint management,” said Mike Walters, President and Co-Founder of Action1. “This integration with VulnCheck NVD++ empowers IT and security teams to act decisively and surgically at a time when patching speed is critical. At Action1, we remain focused on delivering accurate, actionable intelligence through an intuitive platform that democratizes AEM for organizations of all sizes.”