Vulnerability

Definition

A weakness in a system, application, or process that could be exploited to cause harm. Like an unlocked door in an otherwise secure building.

Use Cases

Frequently Asked Questions

What's the difference between a Vulnerability and a Threat?
A vulnerability is a weakness (like an unpatched server or misconfiguration). A threat is something that could take advantage of that weakness (like a hacker, malware, or an automated bot). Vulnerabilities are what you fix; threats are what you defend against.
When should I address vulnerabilities in cloud environments?
Continuously. In practice, scan regularly (or continuously) and prioritize fixes based on risk: internet-exposed assets first, then high-severity issues (e.g., critical CVEs), then vulnerabilities affecting sensitive data or production systems. Also re-scan after changes like new deployments, OS image updates, or configuration changes.
How much does vulnerability management cost in the cloud?
Costs vary based on tooling and scale. You may pay for managed scanning services (often priced per resource, per scan, or per protected workload), plus indirect costs like engineering time to patch, maintenance windows, and potential performance/testing overhead. Open-source scanners can reduce license costs but still require time to operate and integrate into CI/CD.

Category: security

Difficulty: basic

Related Terms

See Also