Network Vulnerabilities

The Network Vulnerability page provides a focused view of potential vulnerabilities detected within the organization’s network infrastructure.

Network Vulnerability

Summary of Vulnerabilities, Total Findings, and IP Addresses:

  • Vulnerabilities: The total number of network vulnerabilities currently detected.

  • Total Findings: Summarizes the different security issues identified within the network.

  • IP Addresses: Displays the number of IP addresses that were scanned.

Page Summary

Vulnerabilities / Scans

The chart or graph is designed to show the frequency of vulnerabilities detected across multiple scans. The vertical axis lists numerical values (0, 4, 8, 12), which would typically represent the number of vulnerabilities identified in each scan or over time.

Vulnerabilities Scans

Vulnerabilities Distribution

This chart displays the Vulnerabilities Distribution based on EPSS Probability (Exploit Prediction Scoring System), which highlights the vulnerability being exploited.

  • The horizontal axis represents the probability percentage (from 0% to 100%) of exploitation, indicating how likely a detected vulnerability might be targeted by attackers.

  • The vertical axis shows the Count of CVEs (Common Vulnerabilities and Exposures), representing the number of vulnerabilities at each probability level.

Vulnerabilities Distribution

Vulnerabilities Distribution

This chart provides a breakdown of vulnerability severity based on the CVSS (Common Vulnerability Scoring System).

  • The chart categorizes vulnerabilities into four severity levels: Critical, High, Medium, and Low.

  • The count of vulnerabilities for each category is displayed as a number on the bar.

Vulnerability Distribution

Vulnerabilities Frequency

It provides a visual representation of the most frequently occurring vulnerabilities within the system.

Vulnerability Frequency

EPSS vs CVSS

This chart visually compares the Exploit Prediction Scoring System (EPSS) and Common Vulnerability Scoring System (CVSS) scores for vulnerabilities, offering insights into prioritization based on exploitability and severity.

  • The horizontal axis (EPSS) represents the probability of a vulnerability being exploited, ranging from 0 to 10, with higher values indicating greater exploitability.

  • The vertical axis (CVSS) represents the severity of the vulnerability, also from 0 to 1, with higher values indicating more severe impact.

There are two highlighted points on this chart:

  1. Deprioritize: Marked by a label stating "High exploitability, low severity," this point suggests that while the vulnerability is likely to be exploited, its impact is low.

  2. Large volume of high-severity vulnerability: Positioned further along the EPSS axis and labeled as "Large volume, of high-severity vulnerability," this point indicates vulnerabilities that are both highly severe and have a significant probability of exploitation.

EPSS Vs CVSS

The Show Vulnerabilities button takes users directly to the XASM Scanned Vulnerabilities page, where they can see details of all detected vulnerabilities for further review and action.

Show Vulnerabilities Button
XASM Scanned Vulnerabilities

The View button allows users to access a detailed page about each specific vulnerability. By clicking this button, users can see in-depth information related to the selected vulnerability.

View Button
Vulnerabilities Details

PreviousAttack SurfaceNextWeb Applications Vulnerabilities

Last updated