HPCA has the ability to collect security vulnerability information for each managed client system in your enterprise. This information is then aggregated and displayed in the Vulnerability Management dashboard.
HPCA is integrated with HP Live Network, which provides updated vulnerability definitions and an executable client scanner.
Note: For a list of common vulnerability management terms used throughout the Vulnerability Management dashboard and reports, see Security and Compliance Management.
HPCA uses the Common Vulnerability Scoring System (CVSS) Base score to place each client device in the enterprise into one of the following severity categories:
Icon | Category | Highest CVSS Base Score for this Device |
---|---|---|
![]() |
High | Between 7.0 and 10 |
![]() |
Medium | Between 4.0 and 6.9 |
![]() |
Low | Less than 3.9 |
![]() |
No Vulnerabilities | No vulnerabilities detected |
![]() |
Unknown | No data available for this device |
The highest severity vulnerability present on a device determines its category. If a device has at least one High severity vulnerability, its category is High. If a device has no High severity vulnerabilities but has at least one Medium severity vulnerability, its category is Medium, and so on.
Caution: If the severity of a particular vulnerability is Unknown, and the CVSS score is null, be sure to investigate this vulnerability thoroughly by using the NVD, the CVE repository, and any other resources at your disposal. In this situation, HPCA may be unable to provide the information that you need to make an informed decision about the issue.
The Vulnerability Management dashboard Executive View includes the following four information panes:
The Operational View includes the following four information panes:
You can configure the dashboard to show or hide any of these panes. See Dashboards.
Note: When you click Vulnerability Management in the left navigation pane on the Home tab, the Vulnerability Management home page is displayed. This page contains statistics and links to pertinent reports.