Note:
This app version is intended for Unified Security Exposure Management (USEM), a significant architectural upgrade to the Vulnerability Response applications.
If you are currently using Vulnerability Response and upgrading to USEM for the first time, you must use the Migration assistant for Unified Security Exposure Management to ensure a safe and successful upgrade. For full details, please refer to the KB2556844 and documentation before proceeding.
If you do not intend to upgrade to USEM, please select a version below 30.x when installing or upgrading.
The Risk Scoring for Security Exposure Management application delivers unified risk scoring capabilities across all Unified Security Exposure Management (USEM) applications.
Administrators can define Risk Calculators and Risk Rules in the Security Exposure Management (SEM) Workspace to consistently evaluate exposure findings based on configurable factors. Risk scoring can be configured across infrastructure, application, container, and configuration compliance findings to ensure consistent prioritisation.
With Risk Rollup Calculators, scores can be aggregated from individual findings to higher-level entities, such as Remediation Tasks, Assets, Vulnerability Items, and Configuration Tests, providing teams with a clear view of risk at every level.
- Define Risk Calculators and Risk Rules centrally in the SEM Workspace
- Apply consistent scoring across all exposure types (infra, app, container, config)
- Configure scoring factors such as severity, exploitability, business criticality, and more
- Use Risk Rollup Calculators to aggregate scores from findings to:
-
- Remediation Tasks
-
- Assets
-
- Vulnerability Entries
-
- Configuration Tests
- New
- Modularised risk calculation functionality for all exposure types in the Security Exposure Management Workspace.
- Centralised risk calculators and risk rules in the Security Exposure Management Workspace, enabling automated prioritisation of exposure findings.
- Required plugins and products
- Dependencies