In this Feature of the Month video, BlueCat’s Director of Enterprise Support, Kevin Mosley, explains how BlueCat handles Common Vulnerabilities and Exposures (CVEs) so you can confidently answer questions from your security team, verify scan results, and understand when and how fixes are delivered.

What you’ll learn:

• How BlueCat prioritizes and addresses high-risk vs. low-risk CVEs
• The difference between hotfix releases and cumulative updates
• How to determine whether a CVE is relevant or already patched in your environment
• Why some CVEs flagged by scanners may not pose real risk due to backported fixes

This video walks through real examples using Debian security trackers and explains how you can validate CVE status using package versions and upstream project timelines. It’s a must-watch for IT security teams, compliance auditors, and system admins working with BlueCat Integrity or BDDS infrastructure. Forward this video to your security team so they can better understand BlueCat’s update cadence, validation process, and the importance of stable, tested releases.