Custom Reports - CWPP Metrics
CWPP vulnerability metrics provide insights into how your environment evolves in terms of vulnerabilities over time. We offer two types of metrics:
Asset Total Vulnerability Count
As the name suggests you can track changes in total vulnerability counts for each severity level over time. The metrics are sent at the completion of every CWPP scan This means these metrics should be used with average function in the custom report widget Metrics include:- Critical Vulnerabilities
- High Vulnerabilities
- Medium Vulnerabilities
- Low Vulnerabilities
Asset (Open/Resolved) Vulnerability Count
Customers often want to track the resolution of vulnerabilities over time, especially in dynamically changing environments with ongoing additions of new assets and vulnerabilities.Asset (Open/Resolved) Vulnerability Count allows you to monitor the introduction/resolution of vulnerabilities in your environment.
For every CWPP scan, we calculate the difference between the latest asset scan results and the previous one, generating metrics for each asset. If new software is installed on an asset and new vulnerabilities are detected, we populate the corresponding metric.
These metrics are generated per asset. To view totals, you can use the sum aggregate function in your report.
Metrics include:
- Open Critical Vulnerabilities
- Open High Vulnerabilities
- Open Medium Vulnerabilities
- Open Low Vulnerabilities
- Open Informational Vulnerabilities
- Open Unknown Vulnerabilities
- Resolved Critical Vulnerabilities
- Resolved High Vulnerabilities
- Resolved Medium Vulnerabilities
- Resolved Low Vulnerabilities
- Resolved Informational Vulnerabilities
- Resolved Unknown Vulnerabilities