USM Anywhere delivers vulnerability assessment Vulnerability assessment uses active network vulnerability scanning and continuous vulnerability monitoring to provide one of the five essential capabilities. as part of a complete package of security monitoring and management capabilities for efficient threat detection. Vulnerability assessment is important because to improve security in your network, you first need to know what is vulnerable.

Vulnerability assessment is used for defining, identifying, classifying, and prioritizing the vulnerabilities in the system. The universal open and standardized method for rating IT vulnerabilities and determining the urgency of response is the Common Vulnerability Scoring System (CVSS). This method assigns severity scores to vulnerabilities. Scores range from 0 to 10, with 10 being the most severe.

USM Anywhere works on both CVSS Open framework for communicating the characteristics and severity of software vulnerabilities that helps to prioritize actions according to their threat. version 3 (CVSSv3) and the previous version 2 (CVSSv2) for scoring.

USM Central displays a list of vulnerabilities detected on your connected deployments, enabling you to easily scan for potential threats on your deployments and drill down to an item on that deployment.

Note: See About Vulnerability Assessment for more information.

Important: USM Central currently only forwards vulnerabilities from USM Anywhere and not USM Appliance.

Topics covered in this section include: