The Vulnerability Assessment Workspace is designed for the Vulnerability Event Manager to create a vulnerability event and to perform vulnerability assessment, especially during the zero-day vulnerability analysis.

You can use the vulnerability assessment workspace to manage critical vulnerabilities, such as:
  • Zero-day vulnerabilities of critical or high severity
  • New threat intel identified for a vulnerability
  • Rapid exploitation of a vulnerability of critical or high severity.

Vulnerability Assessment Workspace and Vulnerability Crisis Management

As a vulnerability event manager, identify and create a vulnerability event record for vulnerabilities of interest. Once you create the vulnerable event, you can perform risk assessment, manually update the risk attributes, and calculate the risk score automatically. Using the Vulnerability Assessment Workspace, you can perform the following actions to handle vulnerability crisis event from inception to resolution.

Prerequisites for vulnerability assessment

Table 1. Available versions
Application Version

Vulnerability Crisis Management plugin

 1.0
Vulnerability Response 20.0
Vulnerability Response with NVD
Note: For more information, see Understanding the NVD integrations.
 1.4.2
Vulnerability Response Integration with CISA 1.2
Data Model for SBOM 1.1.2
Software Bill of Materials Core 2.0.2
Software Asset Management Software Asset Management Foundation plugin or Software Asset Management Professional plugin
Major Security Incident Management 2.2.5

Scheduled jobs

The following are the scheduled jobs.

Scheduled job name Description
Vulnerability Assessment Updates the affected configuration items table and the source of the CI if vulnerable items (VITs or AVITs) are created after the assessment.
Note: This scheduled job runs daily. It runs for a longer period than the other scheduled jobs.