Linking Common Vulnerabilities and Exposures to the MITRE ATT&CK Framework: A Self-Distillation Approach

Benjamin M. Ampel; Sagar Samtani; Steven Ullman; Hsinchun Chen

doi:10.48550/arXiv.2108.01696

Linking Common Vulnerabilities and Exposures to the MITRE ATT&CK Framework: A Self-Distillation Approach

Benjamin M. Ampel, Sagar Samtani, Steven Ullman, Hsinchun Chen

Last updated on Jun 9, 2026

Altmetric Attention Score

This badge shows attention from news, blogs, social media, policy documents, and more. View details

📈 Dimensions Citation Metrics

Dimensions tracks citations across scholarly literature, patents, clinical trials, and policy documents. View full metrics →

In Plain Terms

This paper bridges two separate cybersecurity resources: the CVE list of known software vulnerabilities and the MITRE ATT&CK framework of attacker tactics and defenses. The authors build a language model called CVET that automatically tags each vulnerability with one of ten ATT&CK tactics, using a self-distillation technique on top of RoBERTa. This lets security teams quickly attach likely mitigation context to the vulnerabilities they track.

Key Contributions

Key contributions will be added soon.

Artifacts

PDF

Related Papers

Citation

Benjamin M. Ampel, Sagar Samtani, Steven Ullman, & Hsinchun Chen (2021). Linking Common Vulnerabilities and Exposures to the MITRE ATT&CK Framework: A Self-Distillation Approach. AI4Cyber-KDD https://doi.org/10.48550/arXiv.2108.01696

CVE MITRE ATT&CK Deep Learning Self-Distillation Vulnerability Assessment

Linking Common Vulnerabilities and Exposures to the MITRE ATT&CK Framework: A Self-Distillation Approach

Altmetric Attention Score

📈 Dimensions Citation Metrics

Key Contributions

Artifacts

Related Papers

Citation

Benjamin M. Ampel

Assistant Professor in Computer Information Systems and Director, CyberAI Research and Education Center (CARE)