In many of the views of incidents there are a number of
links to CVE, bugtraq, etc. One can change the links in
the config file however, one cannot remove the links
entirely (including the text CVE, BUGTRAQ).
The reason the entire removal of external signature
links is useful is that in a monitored network that
does not have an internet connectivity, these links
will not work anyhow.
A similar case is the links to WHOIS, etc.