Asset View
Asset View displays cloud resources that are discovered to have vulnerability findings provided by AWS Common Vulnerability and Exposures (CVE) . These cloud resources that are displayed with security vulnerability can be crucial resources such as EC2 instances, VPC, etc. Asset View allows you to navigate CVE findings by cloud resources or vice versa.
Azure and Google Cloud Platform's vulnerability findings will be added later when they become available.
AWS Common Vulnerability and Exposures needed to be activated and setup to use the Asset View feature. For more info, please see Activate Asset and Attack Surface View. |
To access Asset View, go to Resource from FortiCWP dashboard, click on Asset View in the top right hand corner.
Navigate Asset View by Cloud Resource
- Click By Resource button on Asset View page to view all vulnerability findings sorted by cloud resources.
- Click the right arrow sign > of any cloud resource to display the vulnerability findings.
- In the vulnerability findings table, you may sort the table by Severity level. ( Critical, High, Medium, etc.)
- Click View Details to show description of the vulnerability finding and get recommendation on remediation provided by https://cve.mitre.org/.
Risk Score - Risk Score displays overall risk of the cloud resource using statistical analysis from Fortinet over the vulnerability findings.
Vulnerability- Vulnerability column shows divided bar graph of the number of vulnerability findings per vulnerability level.
Navigate Asset View by CVE
- Click on By CVE from Asset View page to display all cloud resources sorted by vulnerability findings.
- Each vulnerability finding shows all the cloud resources that are impacted by it.
- Click the right arrow sign > to display all cloud resources links impacted by the vulnerability finding with detailed description , recommendation for remediation provided by https://cve.mitre.org.