> ## Documentation Index
> Fetch the complete documentation index at: https://docs.root.io/llms.txt
> Use this file to discover all available pages before exploring further.

# Security Findings

> View and filter all CVEs across your subscribed images and libraries in one central table.

Security Findings is the central vulnerability table in the Root platform. It lists every CVE affecting your subscribed images and discovered packages, with filtering, status tracking, and drill-down to individual CVE details.

<Frame caption="The Security Findings table — filterable by status, severity, ecosystem, and OS distro, with Agentic Factory access per row.">
  <img src="https://mintcdn.com/root-939307ed/cCjlTIX-fOzNh_rn/images/security-findings-table.png?fit=max&auto=format&n=cCjlTIX-fOzNh_rn&q=85&s=2757fbb18af786faeba54a49917dbbf6" width="2628" height="1660" data-path="images/security-findings-table.png" />
</Frame>

<Note>
  This page may still appear as "Vulnerabilities" in some parts of the sidebar while the rename is being rolled out.
</Note>

## Accessing Security Findings

Navigate to **Security Findings** (or **Vulnerabilities**) in the app sidebar. The table shows all CVEs across your organization's subscribed images and discovered packages.

## Table columns

| Column        | Description                                                                                |
| ------------- | ------------------------------------------------------------------------------------------ |
| **CVE ID**    | The vulnerability identifier. Click to open the [CVE Details](/platform/cve-details) page. |
| **Severity**  | Critical, High, Medium, or Low                                                             |
| **Package**   | The affected package name and version                                                      |
| **Ecosystem** | Debian, Ubuntu, Alpine, npm, PyPI, Maven, etc.                                             |
| **Status**    | Fixed, Working on a Patch, or No Fix Available                                             |
| **SLA**       | Met, Days Remaining, Days Past SLA, Pending, or Not Applicable                             |

## Filtering

### By status tab

The table is organized into tabs:

| Tab                    | Shows                                                                   |
| ---------------------- | ----------------------------------------------------------------------- |
| **Fixed**              | CVEs that Root has remediated. A patched image or package is available. |
| **Working on a Patch** | CVEs currently being researched and patched by Root's agents.           |
| **No Fix Available**   | CVEs with no applicable fix candidate. Root continues monitoring.       |

### By severity

Filter by Critical, High, Medium, or Low. By default, only Critical and High are shown.

### By ecosystem

Narrow results to a specific ecosystem (e.g., only Debian packages, only npm).

## Clicking a CVE

Click any CVE ID in the table to open the [CVE Details](/platform/cve-details) page with full metadata, affected assets, patch artifacts, and the agentic patching visualization.

## Where Security Findings appear

The Security Findings table is the organization-wide view. The same data also appears in scoped contexts:

| Context            | What it shows                            |
| ------------------ | ---------------------------------------- |
| **Image Report**   | CVEs for a specific subscribed image:tag |
| **Library Report** | CVEs for a specific discovered package   |
| **CVE Details**    | Full deep-dive on a single CVE           |

All of these share the same data source. Clicking a CVE from any table takes you to the same CVE Details page.

## Agentic Patching access

For CVEs where Root has generated patch artifacts, the Security Findings table includes an **Agentic Factory** button on the row. Click it to open the [Agentic Patching](/platform/agentic-patching) flow for that specific CVE.