Cybersecurity
Vulnerability Assessment
Definition
Vulnerability assessment is the process of identifying, quantifying, and prioritizing (or ranking) the vulnerabilities in a system.
Why It Matters
A vulnerability assessment provides a snapshot of the security weaknesses in a system or network. It is a less intrusive process than a penetration test and is often used to get a broad overview of an organization's security posture.
Contextual Example
An IT team runs an automated vulnerability scanner (like Nessus) against their network. The scanner checks for thousands of known vulnerabilities, such as missing patches, open ports, and insecure configurations, and generates a report for the team to act on.
Common Misunderstandings
- Vulnerability assessment is about finding potential problems. Penetration testing is about actively trying to exploit them.
- It is a key component of a continuous vulnerability management program.