0
1.0.3
Zurich, Yokohama Patch 3, Yokohama, Xanadu Patch 5
Operational Technology Hardware Vulnerability Assessment provides a thorough analysis of vulnerabilities within the hardware components of your Operational Technology (OT) systems, such as PLCs, DCS, SCADA systems, and other critical devices. It proactively identifies vulnerability risks. Organizations can assess these vulnerabilities and address hardware weaknesses before operational efficiency, safety, and compliance are impacted by the vulnerabilities.
- Automated vulnerability assessments to detect firmware vulnerabilities in OT devices
- Classification of assessments based on the Full or Partial matching of OT device attributes
- Ability to automatically create VITs based on match status
- Analyze the records to perform actions - Create VITS, deprioritization of assessments, etc.
- Assign confidence scores for the assessments for faster triaging.
New in Zurich release
- The following enhancements are available in Hardware Vulnerability Assessment:
- Assessments without Normalization: Ability to assess discovery models without content available for normalization.
- Confidence Scores: New scoring mechanism for all types of assessments.
- Version Range Support: The range information provided by NVD is used to create assessments without explicitly creating CPEs in NVD.
- Partial assessment for partially normalized discovery model: Creates partial assessments for discovery models without firmware version. The partial assessments are done if the other versions of the discovery model have the same publisher and model.
- Expiring of assessments: If you update the firmware version of a CI, the corresponding normalized discovery model also updates. The assessment records based on the older firmware version expires while new assessments are generated for new firmware version.
- Required plugins and products
- Dependencies
- Operational Technology Vulnerability Response
- OT Asset Management (for device model normalization)
- Vulnerability Exposure Assessment