Vulnerability Impact

The chart view of this pane shows you the relative numbers of devices that are affected by a particular vulnerability. There is one circle per vulnerability, and the size of the circles indicates the number of devices affected. The color of each circle represents the severity of the vulnerability: High (red), Medium (orange), Low (yellow), and Unknown (blue).

The vertical axis represents severity as measured by the CVSS Base score; the horizontal axis represents time since the vulnerability was first published in the National Vulnerability Database (NVD). For example:

When you rest your cursor on a particular circle, a tool tip shows you the following information about the vulnerability that the circle represents:

If you click one of the circles in the chart, a new browser window opens, and a detailed report is displayed. The report shows the number of devices affected by this vulnerability and information about the vulnerability itself. To obtain a list of affected devices, click the number of Devices Impacted in the report.

Vulnerability Impact

You can use the three sliders to zoom in on a particular data region. The sliders determine how many circles appear in the chart and the scale represented by each axis.

When the triangles () are at opposite ends of a slider, the entire data range is visible. When the triangles are closer together, only a subset is visible. You can adjust both triangles on each slider.

If no data appear in the chart, move the triangles to the opposite ends of all three sliders to expose the entire data range.

In the following example, vulnerabilities with a CVSS base score of 6 or greater are shown:

CVSS of 6 or Greater

In the following example, only vulnerabilities with CVSS base scores of 6 or greater that were released during the most recent 500 days are shown:

Most Recent 500 Days

The grid view for this pane provides the following information for each vulnerability detected:

The grid view displays data corresponding to the data displayed in the chart at the time the grid view is selected. If the sliders on the chart are adjusted to show a subset of the data, only this subset will appear in the grid view.

The grid is initially sorted by Device Count. To change the sort parameter, click the pertinent column heading.

To find more information about a particular vulnerability, click its OVAL or CVE identifier.


© 2003 - 2012 Hewlett-Packard Development Company, L.P.