Rapid7, Inc. has unveiled AI-generated risk intelligence integrations within its Rapid7 Command Platform, enhancing its Remediation Hub's functionality.
This new capability aims to expedite remediation efforts by providing security teams with a clear, contextual view of vulnerabilities. By transforming vulnerability data into actionable insights, teams can prioritise actions, improving internal communication and collaboration for tangible risk reduction.
Enhanced vulnerability intelligence capabilities
Additionally, Rapid7 has introduced new features in its Intelligence Hub, an integrated threat intelligence solution that offers security teams relevant context and actionable insights for faster detection and response.
This initiative addresses the widening gap between detection and action, as 22% of enterprise security decision-makers highlight the lack of a comprehensive remediation prioritisation strategy as a significant challenge, according to Forrester.
Focus on AI-generated risk summaries
Craig Adams emphasised the importance of context in prioritising security measures
The latest innovations focus on AI-generated risk and vulnerability intelligence to assist organisations in prioritising their remediations effectively.
Craig Adams, Chief Product Officer at Rapid7, emphasised the importance of context in prioritising security measures. By delivering insights on exploitability and asset criticality, these innovations aim to enhance shared understanding and expedite the mean time to remediate (MTTR).
AI-driven context in risk summaries
The new AI-driven risk summaries offer a comprehensive view of affected systems, detailing real-world activities around each risk and suggesting appropriate actions, such as patching or applying controls. Rapid7’s ability to incorporate AI-driven context into these reports promises quicker decision-making and improved coordination between security and IT teams.
The summaries integrate exploit signals, asset criticality, and diverse sources of vulnerability data into concise, easily understandable briefs. Each summary provides prioritisation based on exploitation likelihood and business impact, ticket-ready context, and fact-based urgency, using data from CISA KEV, EPSS, and threat intelligence sources, along with estimates for patch coverage and implementation obstacles.
Advancements in Intelligence Hub
Rapid7's vulnerability intellect abilities, integrated into Intelligence Hub, give curated, realistic threat contexts
Rapid7's vulnerability intelligence capabilities, integrated into Intelligence Hub, deliver curated, realistic threat contexts for exploited CVEs.
This enhancement enables security teams to focus on relevant vulnerabilities, streamlining remediation based on specific organisational risk rather than relying on generic ratings.
Curated CVE profiles
The Intelligence Hub leverages curated CVE profiles, supported by Rapid7 Labs' research, AttackerKB assessments, and public data, facilitating actionable prioritisation and mitigation of exploited CVEs. Insights from these profiles will also feature in the Remediation Hub, enriching the context available for vulnerability prioritisation.
AI-generated risk summaries within the Rapid7 Command Platform and Intelligence Hub's vulnerability intelligence capabilities will begin rolling out to customers in late November.
Rapid7, Inc., a pioneer in threat detection and exposure management, announced AI-generated risk intelligence as part of the Rapid7 Command Platform. Delivered through Remediation Hub, the new capability accelerates remediation by giving security teams a clear, contextual, and actionable view of each exposure, transforming vulnerability data into risk intelligence-informed decisions that help teams to prioritise remediation, and communicate and collaborate with internal teams to drive measurable risk reduction.
In addition, Rapid7 added new vulnerability intelligence capabilities to Intelligence Hub, the company’s integrated threat intelligence solution designed to provide security teams with meaningful context and actionable insights for accelerated detection and response.
Rapid7’s latest innovations
The gap between detection and action continues to widen. According to Forrester, “lack of comprehensive vulnerability and exposure remediation prioritisation strategy is among the biggest IT/security challenges for 22% of enterprise security decision-makers’ organisations.”
As threat actors exploit vulnerabilities within days and security teams face mounting pressure to show measurable risk reduction, organisations need faster, more intelligent ways to decide what to fix first. Rapid7’s latest innovations directly address this need, empowering teams to cut through noise, focus on impact, and remediate exposures with precision and confidence.
Latest innovations around AI-generated risk
“Exposures are growing faster than teams can respond,” said Craig Adams, chief product officer at Rapid7. “Organisations rely on their security partners to give them the context they need to prioritise."
"Our latest innovations around AI-generated risk and vulnerability intelligence provide important insights into exploitability, asset criticality, and potential risk. The result: shared context, fewer debates, and faster mean time to remediate (MTTR).”
AI-generated risk summaries in Remediation Hub
With these new risk summaries, organisations can immediately see which systems are affected, the real-world activity surrounding each risk, and recommend next steps – from patching to applying compensating controls.
By embedding AI-driven context directly into these summaries, Rapid7 enables faster decision-making and stronger alignment between security and IT teams.
Within seconds, Rapid7’s AI-generated summaries fuse exploit signals, asset criticality, and vulnerability data from multiple sources into a concise, plain-language brief that enables teams to quickly prioritise risks.
Each summary provides:
- Prioritisation clarity based on exploitation likelihood and business impact
- IT-ready context for tickets and change windows
- Fact-based urgency using CISA KEV, EPSS, and threat intelligence data
- Effort estimates for patch coverage and blockers
Vulnerability intelligence in Intelligence Hub
With its latest vulnerability intelligence capabilities, Intelligence Hub delivers curated, real-world threat context to exploited CVEs, allowing security teams to effectively prioritise remediation efforts based on their organisation’s specific risk.
Rapid7's vulnerability intelligence, available within Intelligence Hub, cuts through the noise and alert storms to identify and surface the vulnerabilities that actually matter, rather than leaving security teams to rely on generic security ratings to decipher what is a true risk for their organisation.
Vulnerability intelligence capabilities
Curated CVE profiles, powered by a combination of Rapid7 Labs vulnerability and threat research, real-world vulnerability assessments from AttackerKB, and public metadata, enable actionable, adversary-aware prioritisation and mitigation of exploited CVEs for security teams.
These insights will also be integrated into Remediation Hub, providing customers with threat actor context to support their vulnerability prioritisation process.
AI-generated risk summaries will begin rolling out to Exposure Command and Surface Command customers in late November within the Rapid7 Command Platform. Vulnerability intelligence capabilities within Intelligence Hub will also begin rolling out in November.
