Threat focus
This area only lists all vulnerabilities ③ that are known for supported assets from the inventory. When you click on a vulnerability, additional details about it ④ are shown.
To list all products and assets affected by the vulnerability and define appropriate tasks, select a vulnerability and navigate to the 'Assets and tasks' area ⑤.
| Icon | Description |
|---|---|
| ① | Sort order selection button |
| ② | Sort order selection button |
| ③ | List of existing vulnerabilities |
| ④ | Details of the selected vulnerability |
| ⑤ | Button to jump to 'Assets and tasks' |
Vulnerability
Additional information is displayed for each vulnerability.
The CVSS rating is as follows:
| Rating | CVSS score | Color coding |
|---|---|---|
| None | 0.0 | (none) |
| Low | 0.1 – 3.9 | Blue |
| Medium | 4.0 – 6.9 | Yellow |
| High | 7.0 – 8.9 | Orange |
| Critical | 9.0 – 10.0 | Red |
| Icon | Description |
|---|---|
| ① | Title of the vulnerability |
| ② | ID of the vulnerability |
| ③ | Publisher of the vulnerability description |
| ④ | Age of the most recent change to the vulnerability description |
| ⑤ | Total risk level: Highest risk and number of assets affected by the highest risk |
| ⑥ | Total number of assets affected by this vulnerability, across all risk levels; this total number also includes the assets affected by the total risk level |
| ⑦ | CVSS score of the vulnerability; the value is also shown in color |
Details of the selected vulnerability
Only information related to assets included in the inventory is displayed.
Description
This area shows information about the description of the vulnerability as well as its impact and occurrences on assets in the plant; see 'Threat details'. This area shows options to fix the vulnerability or at least to reduce its impact or lessen the vulnerability; see 'Threat details'.
| Icon | Description |
|---|---|
| ① | Information on the origin of the vulnerability |
| ② | Distribution of the individual risk levels over all of the affected assets; see color bar for risk level. |
| ③ | Information on the effects of the vulnerability |
| ④ | Product families affected by the vulnerability |
| ⑤ | Zones affected by the vulnerability |
Recommended action
This area shows options to fix the vulnerability or at least to reduce its impact or to lessen the vulnerability.
The list of affected products and solutions describes each product with affected firmware versions and the corresponding solution; the link leads to the product page, from where a newer firmware version can be downloaded if necessary.
| Icon | Description |
|---|---|
| ① | Workarounds and mitigation |
| ② | List of affected products and solutions |
Assets and tasks
This area shows affected products and the individual assets as well as tasks planned for them. If a product ③ from the product list ② is expanded, all individual assets ④ of this product are displayed.
If you select an asset, the recommendations and tasks ⑥ are displayed and offered for selection. Changes to the tasks are applied immediately. See 'Task definition'. Asset details ⑤ can also be displayed for each asset.
Clicking the 'Close' button ⑦ takes you back to the 'Threat focus' page.
| Icon | Description |
|---|---|
| ① | Title of the vulnerability |
| ② | List of affected products and individual assets |
| ③ | Product (expanded) |
| ④ | Asset of a product ③ |
| ⑤ | 'Show asset details' button |
| ⑥ | List of recommendations and tasks |
| ⑦ | 'Close' button |