II.
Workflow overview
Reference · liveworkflow:cve-triage
CVE Triage overview
Triaging new Common Vulnerabilities and Exposures — impact assessment against deployed systems, exploitability analysis, patch availability check, remediation prioritization, and SLA-driven fix scheduling. Distinct from cve-response-coordination in focusing on initial triage rather than full response.
Attributes
displayName
CVE Triage
workflowKind
operational
triggerType
event-driven
typicalCadence
on-demand
complexity
moderate
description
Triaging new Common Vulnerabilities and Exposures — impact assessment
against deployed systems, exploitability analysis, patch availability
check, remediation prioritization, and SLA-driven fix scheduling.
Distinct from cve-response-coordination in focusing on initial
triage rather than full response.
Outgoing edges
applies_to_domain2
- domain:security·DomainSecurity
- domain:cybersecurity·DomainCybersecurity
involves_role3
- role:appsec-engineer·RoleApplication Security Engineer
- role:security-engineer·RoleSecurity Engineer
- role:threat-analyst·RoleThreat Analyst
requires_skill_area2
- skill-area:vulnerability-management·SkillAreaVulnerability Management
- skill-area:dependency-vulnerability-mgmt·SkillAreaDependency Vulnerability Management
triggers_responsibility2
- responsibility:dependency-security·ResponsibilityDependency security
- responsibility:zero-day-response·ResponsibilityZero-day response
Incoming edges
None.