Context-Based Vulnerability Prioritization with Qualys VMDR®

QSC USA 2020 – Mehul Revankar, VP of Product Management & Engineering, VMDR, Qualys

Vulnerabilities are not created equal, but the CVSS scoring model scores them as though they are all the same. CVSS ratings represent the technical severity of the vulnerability, not the risk it poses to an organization. Without the right context, the risk from a critical vulnerability with no exploit would appear to have the same risk as a vulnerability with an easy exploit that is actively being exploited. This is why context is so important. This session will show how Qualys VMDR helps organizations prioritize vulnerabilities with the proper context across threats, assets, and vulnerabilities. VMDR then combines them with mitigation controls so you can focus on the right set of vulnerabilities to prioritize and remediate.