Vulnerability Assessment Service

Wave Z.340Endpoint /api/v1/v22/vuln-svc

The Vulnerability Assessment service is a managed offering that combines authenticated and unauthenticated scanning, CVE prioritization (CVSS + EPSS + KEV), patch SLA tracking, and customer-facing reporting. It builds on the asset attack surface engine and feeds the AI prioritization weights set in the platform charter.

Capabilities

• Network scan: TCP/UDP ports, banner grab, TLS fingerprint, fingerprint heuristics across the 8 asset types tracked in attack surface.
• Authenticated scan: SSH/WinRM/SNMP for missing patches, configs, drift vs CIS benchmarks.
• Container image scan: layers, OS packages, language deps, secrets, malware signatures.
• Web app scan: passive crawl + active OWASP-Top-10 probing (XSS, SQLi, SSRF, IDOR).
• Cloud config scan: AWS / Azure / GCP / OCI cross-account.

Scanner profiles

Prioritization

Findings are scored by the platform AI priority weights:

• severity 25%
• exploitability (EPSS / KEV) 20%
• asset exposure 15%
• vuln freshness 10%
• recurrence 10%
• asset criticality 10%
• business context 10%

SLAs: critical=7 days, high=30 days, medium=90 days, low=365 days.

Operator quick start

POST /api/v1/v22/vuln-svc/scan
{
  "tenant_id": "tnt-xxx",
  "profile": "quick-network",
  "target": "10.30.0.0/24",
  "user": "secops"
}

Then poll the scan id or retrieve via:

GET /api/v1/v22/vuln-svc/{tenant_id}/findings?severity=critical

Related

• Framework Engine API
• Docs home