Vulnerability Details Reports

vulnerability detail reports
Label Field Name Description Report Purpose

a

Attack Vector Details Report:

The Attack Vector Details Report provides a listing of attack vectors found on your sites or APIs. Attack vectors are the specific location an attacker could use to exploit a given vulnerability found on your assets.

In addition to the location and time the vulnerability was discovered, the attack vector details include a breakdown of the exact request and response so that developers can easily address the problem.

  • Detailed review of specific attack vectors

  • Development and/ or Security Operations

b

Vulnerability Details Report - Sites:

The Vulnerability Detail Report — Sites provides detailed descriptions of the vulnerabilities found on the sites selected for this report, grouped by vulnerability class. Each report section contains a full description of the vulnerability class, remediation instructions for that class, and a list of specific instances of that vulnerability on each site.

This report is available for Continuous Dynamic only, as it is based on an assessment of the production or pre-production site.
  • Detailed review of vulnerabilities

  • Development and/ or Security Operations

c

Vulnerability Details Report - Applications:

The Vulnerability Detail Report — Applications includes detailed description of the vulnerabilities found in each application selected for this report, grouped by category, and includes for reference the code snippets associated with the vulnerabilities.

This report is available for Sentinel Source (static testing) only, as it is based on an assessment of the application code.
  • Detailed review of vulnerabilities

  • Security team members, Development Managers and Developers.

d

Vulnerability Detail Report (Mobile Applications)

The Vulnerability Details report provides detailed information about the vulnerabilities identified in the mobile application code selected for this report, grouped by category, and includes for reference the code snippets associated with the vulnerabilities.

This report is available for Sentinel Source (static testing) only, since it is based on an assessment of the application code.
  • Detailed description of vulnerabilities found

  • Security team members, Development Managers and Developers.