OTbase Inventory introduces AI-powered capabilities to help analysts better understand vulnerabilities and system data without needing to sift through countless references. Two core features are included: CVE Summaries and AI Context we will go into detail about these features below.
CVE Summaries
CVE descriptions provided by NIST are often limited in detail, making it difficult to quickly assess the relevance and criticality of a vulnerability. To address this, OTbase generates automatic summaries for select CVEs.
Summaries are included in the regular metadata updates. They are continuously improved and updated over time. Ensure the metadata distribution option is enabled in ADMINISTRATION → SETTINGS → Metadata. This ensures that analysts always have access to clear and evolving vulnerability insights.
AI Context
For deeper, on-demand insights, OTbase offers AI-generated context for CVEs as well as hardware and software product profiles. Unlike CVE Summaries, AI Context is not limited to official references—it can include information from advisories, discussion forums, and other relevant sources.
On-Demand Loading: The AI context section is initially empty and can be loaded dynamically by pressing the Load button. Once retrieved, the context is saved and reused until refreshed.
Refresh Capability: Analysts can update AI context at any time to ensure the most current information is available.
Privacy: Only the identifier (such as a CVE ID or product name) is sent to the AI provider. No information about the installed base is ever shared.
Note: On initial open, the AI context section will be empty, except for a button labeled Load. Pressing the Load button will dynamically call your AI provider (see below) and obtain the context information. Once that you, or another OTbase user, have loaded the AI context, it will be saved by OTbase and readily available for the next open of the CVE profile. If you suspect that the AI context may be outdated, you can refresh the document by clicking on the Refresh button.
Supported Providers
In order to use AI context, you'll need to specify your AI provider details, including your API key, in ADMINISTRATION → SETTINGS → Metadata. Currently, xAI (Grok) and OpenAI (ChatGPT) are supported, with additional providers considered for the future.
Comments
0 comments
Please sign in to leave a comment.