Vulnerability Assessment

March 5, 2021

You are here:
< Back

What is a Vulnerability Assessment?

A Vulnerability Assessment is a process essentially acting like a “health check” to discover potential vulnerabilities before they can be exploited by attackers, allowing for timely remediation and mitigation strategies to be implemented; it involves scanning for known vulnerabilities, assigning severity levels, and recommending corrective actions to address them.

VENDOR DEFINITIONS

VA Tools and Best Practices – Imperva
A vulnerability assessment is a systematic review of security weaknesses in an information system. It evaluates if the system is s…
Black Duck
SPECIFIC DEFINITIONS: 

Formal description and evaluation of the vulnerabilities in an information system.

SOURCE: SP 800-53; SP 800-37

Systematic examination of an information system or product to determine the adequacy of security measures, identify security deficiencies, provide data from which to predict the effectiveness of proposed security measures, and confirm the adequacy of such measures after implementation.

SOURCE: SP 800-53A; CNSSI-4009