Vulnerability assessment
First Claim
Patent Images
1. A method for assessing a vulnerability of a network device, the method comprising:
- receiving a list of one or more services externally exposed on the network device;
receiving an indication of at least one vulnerability in at least one software package installed on the network device;
determining whether an externally exposed service is associated with a software package that includes at least one vulnerability; and
executing at least one remedial action upon determining that an externally exposed service is associated with a software package that includes at least one vulnerability.
2 Assignments
0 Petitions
Accused Products
Abstract
Methods and systems for assessing a vulnerability of a network device. The systems and methods described herein combine data regarding locally discovered vulnerabilities and exposed services with data regarding what executables are provided by software installed on the network device.
-
Citations
20 Claims
-
1. A method for assessing a vulnerability of a network device, the method comprising:
-
receiving a list of one or more services externally exposed on the network device; receiving an indication of at least one vulnerability in at least one software package installed on the network device; determining whether an externally exposed service is associated with a software package that includes at least one vulnerability; and executing at least one remedial action upon determining that an externally exposed service is associated with a software package that includes at least one vulnerability. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system for assessing a vulnerability of a network device, the system comprising:
-
an interface configured to receive at least; a list of one or more services externally exposed on the network device, and an indication of at least one vulnerability in at least one software package installed on the network device; a memory; and a vulnerability assessment module configured to execute instructions stored on the memory to; determine whether an externally exposed service is associated with a software package that includes at least one vulnerability, and execute at least one remedial action upon determining that an externally exposed service is associated with a software package that includes at least one vulnerability. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A computer readable medium containing computer-executable instructions for a method for assessing a vulnerability of a network device, the medium comprising:
-
computer-executable instructions for receiving a list of one or more services externally exposed on the network device; computer-executable instructions for receiving an indication of at least one vulnerability in at least one software package installed on the network device; computer-executable instructions for determining whether an externally exposed service is associated with a software package that includes at least one vulnerability; and computer-executable instructions for executing at least one remedial action upon determining that an externally exposed service is associated with a software package that includes at least one vulnerability. - View Dependent Claims (18, 19, 20)
-
Specification