ELI5: What is a Vulnerability Assessment?
It’s like walking around a castle looking for cracks in the walls, loose bricks, or rusty gates — weaknesses that an attacker could use to get in. A vulnerability assessment finds these weak spots so they can be patched before anyone exploits them.
Definition
A vulnerability assessment is a systematic process of identifying, classifying, and prioritizing security weaknesses in systems, networks, and applications that could be exploited by threat actors. Unlike penetration testing, a vulnerability assessment does not actively exploit vulnerabilities — it identifies and reports them. Results are used to prioritize patching and remediation activities based on severity (using CVSS scores) and exploitability in the organization’s specific environment.
Key Details
- Tools: Nessus, Qualys, OpenVAS, Tenable.io, Microsoft Defender Vulnerability Management
- Authenticated scans (using credentials) produce more complete results than unauthenticated scans
- CVSS (Common Vulnerability Scoring System) scores (0–10) prioritize findings by severity: Critical (9–10), High (7–8.9), Medium (4–6.9), Low (0.1–3.9)
- Vulnerability assessments should be performed regularly (at least quarterly per PCI DSS) and after significant changes
- Exam tip: vulnerability assessment = identify and report; penetration test = exploit and demonstrate impact; both are risk assessment tools
Connections
- Parent: risk-assessment — vulnerability assessment is a technical risk identification activity
- See also: threat-assessment
- See also: risk-identification