Description

Last Seen
Control Type
Control Owner
Control Approver
Target State
Baseline State
Monitored

Vulnerability Management

Vulnerability Management is the process of continuously assessing and tracking vulnerabilities on all enterprise assets within the enterprise’s infrastructure in order to remediate and minimise the window of opportunity for attackers. Key features and uses include real-time monitoring and assessment of vulnerabilities across the network, prioritisation of high-risk threats, tracking and reporting on remediation efforts, and overall visibility into the security landscape. Asset Family Breakdown: This presents a breakdown of vulnerabilities among different asset families, allowing for a clear understanding of which types of assets are most susceptible to security issues.

Medium Vulnerabilities (Last 45 Days) 59
Critical Vulnerabilities (Last 15 Days) 51
Low Vulnerabilities (Last 60 Days) 51
High Vulnerabilities (Last 30 Days) 47

ADDC 21
Internal 15
Production 15

No Patch Available 28
Patchable 23

Count	Top CVE
16265	CVE-2021-001
16182	CVE-2021-004
16155	CVE-2021-008
16119	CVE-2021-007
16119	CVE-2021-010

Count	Top CVE
16399	CVE-2021-8901
16239	CVE-2021-0123
16205	CVE-2021-2345
16173	CVE-2021-7890
16152	CVE-2021-9012

Asset Family	Active Vulnerabilities	Status of Vulnerabilities	New Vulnerabilities	Status of Vulnerabilities	Re-Opened Vulnerabilities	Status of Vulnerabilities
Servers	84 6	Critical 23 + 4 High 37 + 2 Medium 6 - 4	56 1	Critical 5 - 7 High 30 + 8 Medium 9 + 2	19 4	Critical 8 + 3 High 8 0 Medium 0 - 3
Windows	62 15	Critical 12 + 2 High 29 + 10 Medium 7 + 2	33 3	Critical 5 - 1 High 18 + 7 Medium 4 + 1	10 2	Critical 0 - 3 High 8 + 4 Medium 0 - 2
iOS	55 3	Critical 11 + 1 High 28 + 8 Medium 3 - 3	28 5	Critical 1 - 6 High 11 - 1 Medium 6 + 2	10 3	Critical 1 - 2 High 6 + 1 Medium 0 - 2
Linux	38 6	Critical 9 0 High 18 + 1 Medium 3 - 2	26 2	Critical 2 - 4 High 17 + 6 Medium 5 + 2	11 0	Critical 6 + 4 High 3 - 1 Medium 0 - 2

Vulnerability Patch Management

This provides comprehensive visibility into Vulnerability Coverage, enables prompt and effective threat response, and supports ongoing improvements in security measures.

VM Tools Coverage

This provides comprehensive visibility into how many aasets are covered by VM tools and helps in idnetifying gaps.

CyberArk - PAM Coverage for Servers

25%

Thresholds:
Threshold: 0-40%
Threshold: 41-80%
Threshold: 81-100%

Cisco AnyConnect - Laptop Coverage

29%

Thresholds:
Threshold: 0-40%
Threshold: 41-80%
Threshold: 81-100%

Zscaler - Laptop Coverage

7%

Thresholds:
Threshold: 0-40%
Threshold: 41-80%
Threshold: 81-100%

Vulnerability By Business Units

This provides comprehensive visibility into Vulnerability Coverage over different BU, enables prompt and effective threat response, and supports ongoing improvements in security measures.

Name/ID	Current	Jun	Jul	Aug
Active Vulnerabilities Sev 5 London	12	12	12	13
Active Vulnerabilities Sev 4 London	20	12	13	12
Linux Active Vulnerabilities Sev 5 London	5	4	4	4
Linux Active Vulnerabilities Sev 4 London	3	4	4	4
Windows Active Vulnerabilities Sev 5 London	5	4	4	4
Windows Active Vulnerabilities Sev 4 London	9	4	4	4
Mac OS Active Vulnerabilities Sev 5 London	2	4	4	4
Mac OS Active Vulnerabilities Sev 4 London	8	4	4	4

Name/ID	Current	Jun	Jul	Aug
Active Vulnerabilities Sev 5 Sydney	9	12	12	13
Active Vulnerabilities Sev 4 Sydney	10	13	12	13
Linux Active Vulnerabilities Sev 4 Sydney	2	4	4	4
Linux Active Vulnerabilities Sev 5 Sydney	3	4	4	4
Mac OS Active Vulnerabilities Sev 4 Sydney	6	4	4	4
Mac OS Active Vulnerabilities Sev 5 Sydney	3	4	4	4
Windows Active Vulnerabilities Sev 4 Sydney	2	4	4	4
Windows Active Vulnerabilities Sev 5 Sydney	3	4	4	4

Last Seen:
Control Owner:
Control Approver:

Failed To Retrieve Data

Latest Evidence

Description

Calculations

Metadata

Links

Relationships

Tags

Entity Scope

Description

Calculations

Metadata

Events (Past 7 Days)

Relationships

Evidence Picker

Evidence

Manual Attestation

Risk Score

Org Chart

Metadata

Tags

Timeline

Discovered By

Evidence

Vulnerability Management

Coverage Summary

CovSum

Vulnerability Severity Distribution

Critical Vulnerability By Environment

Patch Status Of Critical Vulnerabilities

New Critical and Patched Vulnerabilities within 15 days

Critical Vulnerabilities (Last 15 Days)

51

High Vulnerabilities (Last 30 Days)

47

Medium Vulnerabilities (Last 45 Days)

59

Low Vulnerabilities (Last 60 Days)

51

Critical Vulnerabilities by Department

Critical Vulnerabilities by Products

Top 10 CVE in IOT Devices

This widget provides a list of the top 10 CVEs that are found in IOT devices installed within an infrastructure.

Top 10 CVE in codebase

Vulnerabilities with status by Asset Family

84

23

37

6

56

5

30

9

19

8

8

0

62

12

29

7

33

5

18

4

10

0

8

0

55

11

28

3

28

1

11

6

10

1

6