Vulnerabilities Dashboard

Each entry in the vulnerability list includes:

When hovering over a vulnerability, two options are displayed: Results (3) and Copy link (4).

Clicking Results opens the vulnerability in a new browser tab, allowing immediate remediation.

Copy link copies a link to the vulnerability to the clipboard, making it easy to share with a developer for prompt action.

This chart categorizes vulnerabilities based on their severity levels: Info, Low, Medium, and High. Each severity level represents a specific vulnerability's potential impact and risk. This chart allows users to understand the distribution of vulnerabilities across different severity levels within their applications.

For example, it can highlight the prevalence of low-severity issues, which may not pose an immediate threat but should still be addressed, as well as high-severity vulnerabilities that demand urgent attention. This information is essential for prioritizing and addressing security weaknesses.

This chart classifies vulnerabilities into various states, such as To Verify, Not Exploitable, Urgent, and Confirmed. These states represent the current status or progress of addressing vulnerabilities. To Verify vulnerabilities may require further investigation, while Urgent ones demand immediate remediation.

This chart offers a dynamic view of the vulnerability management process, allowing users to track vulnerabilities' lifecycles from their initial discovery to resolution.

Organizations can prioritize remediation efforts and allocate resources effectively by understanding the severity and status of vulnerabilities. This data-driven approach ensures a proactive and adaptive response to security threats and helps safeguard applications from potential risks.

This chart provides valuable information from the SAST scanner on the number of vulnerabilities resolved for each severity level and the average time it took to resolve them (measured in days). It helps assess the efficiency and effectiveness of the vulnerability resolution process and focuses only on resolved vulnerabilities.

This pie chart displays the total results organized by severity levels, their percentage of the total results, and their density for each severity level.

When hovering over a specific severity segment on the pie chart, the information for that severity level is highlighted, making it easier to understand the distribution of vulnerabilities based on their severity levels.

This chart displays the results grouped by the State, including custom result states. By hovering over each state, you can view the details for the total number of findings, their percentages, and their density.

This pie chart displays the results grouped by status, representing the total findings and their percentage for each status.

Please note that the data used in the calculation is based on the latest scans and open results. Therefore, resolved results are unavailable as part of this KPI and are no longer included in the current findings.

When hovering over a specific status segment on the pie chart, the information for that status is highlighted.

This table displays the total number of results grouped by their result state, including custom result states. Each state is further organized by severity.

The table provides a comprehensive overview of the distribution of vulnerabilities based on their result states and severity levels, enabling effective analysis and monitoring of security-related outcomes.

This card presents the 20 oldest vulnerabilities of all projects, regardless of language. For each vulnerability, you can view its age, measured in days.

This card presents the 20 riskiest vulnerabilities found in scans, ordered by severity, from high to informational, regardless of the language.