| Developers: | Positive Technologies |
| Date of the premiere of the system: | 2025/07/16 |
| Branches: | Internet services, Information security |
Main article: Vulnerabilities in software and hardware
2025: Vulnerability Data Portal Opens
Positive Technologies has opened a portal that accumulates data on vulnerabilities in software and hardware from manufacturers around the world. The company announced this on July 16, 2025. The regularly updated database will allow ethical hackers, information security specialists and companies to always be aware of current security flaws. As early as July 2025, the site can find the most complete and accurate information about 317 thousand vulnerabilities and the researchers who identified them, as well as the recommendations of vendors, in order to quickly eliminate security gaps.
Against the background of periodically emerging news about the stop of updates to the databases of the well-known vulnerabilities National Vulnerability Database and Common Vulnerabilities and Exposures (CVE), as well as the reduction in funding for MITRE, which assigns unified identifiers to them, the timeliness of receiving data security defects is jeopardized. Such delays give odds to attackers, allowing them to exploit vulnerabilities that have not yet been fixed. Without this information, companies, not knowing specific weaknesses, were unable to update their infrastructure in time, and developers were unable to add appropriate signatures to the IPS to identify relevant ones. attacks In addition to the speed of processing and publishing vulnerability data, the international and community the Russian have INFORMATION SECURITY noted insufficient accuracy and completeness in providing information about vulnerabilities. FSTEC Not all Russian data researchers fall into CVE/NVD (unlike NOS).
Having seen this request from the global cybersecurity industry, Positive Technologies has created a public portal on which it intends to post comprehensive information about all vulnerabilities found, the status of their correction and the degree of criticality. As of July 2025, the catalog contains information about more than 300 thousand gaps and 45 thousand researchers. On average, a thousand new records are published weekly.
When compiling the base, the company relied on many years of experience and expertise of its own security research center, which is one of the largest in Europe. The center employs white hackers studying the security of various IT systems and devices (PT SWARM), and cybersecurity experts (PT Expert Security Center) who investigate incidents and detect new cyber threats.
The key difference between the portal and other databases known in the global cybersecurity industry is in the volume and quality of data: Positive Technologies specialists aggregate information about each vulnerability from many sources (CVE and NVD databases, from Reddit, X.com, Telegram sites), then using LLM they prepare a summary description - more detailed compared to existing databases. Researchers who reported security issues, for example, are not listed in the MITRE registry, but the company considers it important to mark this detail on its portal. Using a neural network that extracts information from the vendors' official websites, Positive Technologies experts identify the researchers and include their names in the database. In addition, the portal provides information about vulnerabilities that are most actively discussed by community participants on industry platforms in order to compile a rating of the most trending vulnerabilities.
 | Over more than 20 years of work, we have accumulated an extensive knowledge base about vulnerabilities in products of foreign and domestic suppliers. Having redesigned and enriched it, we have created an interactive portal, which, we hope, will be useful to both independent researchers and information security services, - said Dmitry Serebryannikov, director of security analysis at Positive Technologies. - We set out to make it a reliable and sufficient source of information about all vulnerabilities detected in the information security world. Already at the start, the number of described shortcomings exceeds the CVE MITRE database - 300 thousand records against 270 thousand. |  |
Positive Technologies plans to expand the functionality of the portal, for example, the function of obtaining personal feeds will be added to filtering smart tape to simplify search for specific products. In the future, white hackers will also have the opportunity to create personal profiles, publish information about their achievements, as on bagbounty platforms. In addition, platform users will be able to subscribe to researchers of interest to them and comment on records.
Links
| The site content is translated by machine translation software powered by PROMT. The machine-translated articles are not always perfect and may contain errors in vocabulary, syntax or grammar. Read original article If you find inaccuracies or errors in the results of machine translation, please write to editor@tadviser.ru. We will make every effort to correct them as soon as possible. |