Kenna FAQ
General
Kenna BASICS

Vulnerability Scoring in Kenna

Linda Brown

April 05, 2019 14:53

Vulnerabilities in Kenna scored on a 100 point scale divided into thirds:

Green 0-33

Amber 34-66

Red 67-100

For network vulnerabilities, score is based on CVE and starts with a normalized CVSS score from the National Vulnerability Database. Threat intel is layered onto that base score to compile a Kenna risk score.

Application scores are based on the risk score from the scanner or a base CWE score if scanner score is not available.

Have more questions? Submit a request

Comments

0 comments

Please sign in to leave a comment.

Articles in this section

Support Info
Getting Started with Hierarchical Risk Meters
Reporting on your "True Risk Score"
Kenna Product Feedback Policy
Vulnerability Scoring in Kenna
Why is it hard to recreate historical reporting numbers?
Fix Reporting - Unique Count vs Total Count
Predicted Exploits
Using Reporting Templates
How is Mean Time to Remediate Calculated?