Findings
Generator
Configuration
Lucidum Reverse
Architecture
Statistics
← All Findings
Vendor:
SentinelOne Singularity XDR
FIN-302
Weight:
5
4
3
2
1
Confidence:
High
Medium
Low
Edited:
2026-03-06 09:03
Verified
What It Detects
An unmanaged asset (shadow IT) has known CVE vulnerabilities detected. This creates multiplicative risk: CVEs require patching to remediate, but unmanaged assets have no assigned owner to prioritize, test, and apply patches. Without ownership, these vulnerabilities persist indefinitely — they are never entered into the vulnerability management workflow, never prioritized for patching, and never validated as resolved. The asset becomes a permanently exploitable target outside of organizational security processes.
MITRE ATT&CK Techniques
Comma-separated, e.g. T1078, T1190
Checks
read-only
Field
Operator
Value
CVE List
not_empty
IT Managed (True/False)
equals
False
Remediation
×
×
×
×
+ Add item
Why It Matters
×
×
×
+ Add item
Save Changes
Export Lucidum