Vulnerable Assets

Overview

The Vulnerable Assets page lists assets that indicate a risk posed to your public cloud environment due to assets with vulnerabilities, which are exposed to the Internet.

Common Vulnerabilities and Exposures (CVE) is a list of publicly-disclosed computer security flaws, each of which has a unique CVE ID number. Using vulnerability assessment tools, such as Azure Defender, AWS Integrator, and GCP OS Configuration, SecureCloud identifies assets that have CVEs with an attack vector of type Network. These tools need to be enabled in the vendor account. Additional integrations with other tools can be implemented using APIs that will add the CVEs identified by them to SecureCloud. For more information about additional integrations, contact Tufin support. A CVE will appear in SecureCloud only once, even if identified by different tools.

What Can I See Here?

The table lists vulnerable assets with the following information:

  • Asset name

  • Account name: As defined in the Account Manager.

  • Internet Access: Indicates whether the asset can be accessed from the Internet.

  • Highest Severity: The severity level - Critical, High, Medium, or Low. The number indicates the number of CVEs with the specified severity out of the total number of CVEs found for the asset.

What Can I Do Here?

Click an asset name to see the CVE issues found for the asset.

How Do I Get Here?

Main Menu > Dashboard > Vulnerable Assets Exposed to the Internet widget