Russian Vulnerability Scanner Database

Navigation

Help & DocumentationPlatform OverviewHow to Use the PlatformVulnerability Scoring SystemsFrequently Asked QuestionsRelease History

Welcome to the Vulnerability Catalog vulnerabilities.etecs.ru — an educational platform demonstrating the capabilities of the Russian comprehensive security analysis system Scanner-VS 7 by JSC “Echelon Technologies”.

What is this catalog?

The Vulnerability Catalog is a free navigational system for a normalized vulnerability database, providing the cybersecurity community with access to current threat information for educational purposes.

Key Platform Features

  • Normalized Vulnerability Database: Aggregated data from FSTEC Russia BDU, NIST NVD, and other authoritative sources
  • Professional Risk Assessment: CVSS and EPSS scores for accurate threat analysis
  • Exploit Information: Data on available exploits and their exploitation probability
  • Affected Software Analysis: Detailed information about vulnerable systems and configurations
  • Multilingual Support: Interface in Russian and English

Quick Start

1. Exploring the Vulnerability Catalog

Visit the Vulnerability Catalog to research our database containing current information security threat data.

2. Effective Search

  • By CVE ID: Enter a specific identifier (e.g., CVE-2024-1234)
  • By Keywords: Search vulnerability descriptions
  • By Criticality: Use CVSS filters to find critical threats

3. Professional Analysis

Apply advanced filters by:

  • CVSS score ranges (severity 0.0-10.0)
  • EPSS score ranges (exploitation probability 0.0-1.0)
  • CVSS versions (2.0, 3.x, 4.0)
  • Data sources

Professional Threat Analysis Methodology

Vulnerability Prioritization

Critical Priority — vulnerabilities with characteristics:

  • 🔴 CVSS 9.0+ (critical impact)
  • 🔴 EPSS 0.8+ (high exploitation probability)

High Priority — vulnerabilities with characteristics:

  • 🟠 CVSS 7.0-8.9 (high impact)
  • 🟡 EPSS 0.5+ (moderate-high exploitation probability)

Medium Priority — vulnerabilities for scheduled remediation:

  • 🟡 CVSS 4.0-6.9 (moderate impact)
  • 🟢 EPSS 0.2-0.5 (low exploitation probability)

Understanding Assessment Systems

CVSS (Common Vulnerability Scoring System)

Measures the potential impact of a vulnerability when exploited (0.0-10.0):

  • 🔴 9.0-10.0 Critical: Immediate action required
  • 🟠 7.0-8.9 High: Address with priority
  • 🟡 4.0-6.9 Medium: Include in planned work
  • 🟢 0.1-3.9 Low: Minimal impact

EPSS (Exploit Prediction Scoring System)

Predicts the exploitation probability in real-world conditions (0.0-1.0):

  • 🔴 0.8-1.0: Very high probability of attacks
  • 🟡 0.5-0.8: Moderate probability of attacks
  • 🟢 0.2-0.5: Low probability of attacks
  • 0.0-0.2: Minimal probability of attacks

Connection to Commercial Product Scanner-VS 7

This catalog uses the same normalized vulnerability database as the commercial Scanner-VS 7 — a FSTEC Russia certified comprehensive security analysis system.

Commercial Version Scanner-VS 7 Advantages

Technical Specifications:

  • Rapid Deployment: Installation in 1 minute
  • 💾 Minimal Requirements: 2 GB RAM, 2 CPU cores
  • 🛡️ FSTEC Russia Certificate №2204 (4UD, TU)
  • 🔍 Minimal False Positives thanks to quality database

Supported Operating Systems:

  • Domestic OS: Astra Linux SE, RED OS, Alt Linux (FSTEC certified)
  • International: Windows, Ubuntu, RedHat, CentOS Stream, Fedora
  • Containers: Docker, Podman, Kubernetes

Functional Capabilities:

  • 🔍 Automated IT infrastructure scanning
  • 📊 Security configuration analysis
  • 🔐 Password dictionary auditing
  • 📈 Continuous security monitoring
  • 📋 Detailed reporting

Target Audience

  • Information Security Specialists — for researching current threats
  • IT Administrators — for planning security updates
  • Students and Educators — for learning modern threat analysis methodologies
  • Security Researchers — for analyzing attack vectors
  • Organization Representatives — for assessing professional solution needs

Frequently Asked Questions

How often is data updated?

The database is updated in real-time. EPSS scores are updated daily, CVE data is synchronized when new records appear.

What’s the difference from the commercial version?

The catalog provides database access for research purposes. Scanner-VS 7 additionally includes automated scanning, configuration analysis, reporting, and technical support.

Can it be used for commercial purposes?

The catalog is intended for educational and research tasks. For commercial use, Scanner-VS 7 is recommended.

Get the Commercial Version

To implement Scanner-VS 7 in your organization:

  • 📧 Email: partners@npo-echelon.ru
  • 📞 Phone: 8 (495) 223-23-92
  • 🏢 Address: 107023, Moscow, Elektrozavodskaya str., 24
  • 🛠️ Tech Support: 8 (800) 100-05-02

JSC “Echelon Technologies” — Russian developer of cybersecurity solutions with over 20 years of experience creating information protection systems for government and commercial organizations.