Viewing Endpoint Posture
After the scan is complete, Endpoint Security shows the detected Common Vulnerability and Exposures (CVE) and its Common Vulnerability Scoring System (CVSS).
-
End-users can also initiate the scan and view the vulnerable CVEs from the Endpoint Security client (Compliance and Posture).
-
Endpoint Security can apply the patch only to applications installed in the C:\Program Files directory.
-
Endpoint Security can download and apply a patch only if its size is less than 2 GB.
To view the posture for endpoints, click Asset Management > Posture Management.
If you see the following screen, make sure to configure the posture assessment settings.
Vulnerabilities by Severity
The Vulnerabilities by Severity widget shows the total number of vulnerable CVEs by severity.
Top 5 Risky Apps
The Top 5 Risky Apps widget shows the top five applications with vulnerable CVEs and their average CVSS score.
For example, if Visual C++ 2008 has different CVEs, then the average CVSS score is 9.3.
Top Vulnerable Devices
The Top Vulnerable Devices widget shows the top five vulnerable endpoints (most vulnerable CVEs detected).
The number to the left of the machine name indicates the total number of CVEs detected in the machine.
To view vulnerable CVEs in the machine, click the machine name. It shows the details in the Vulnerability Assessment Table.
There are three types of View available for risk assessment:
-
Vulnerabilities view - Shows all the vulnerable CVEs and their CVSS score detected in the endpoints. See Vulnerability Assessment Table
-
Devices view - Shows devices that have at least one CVE detected.
Patches By Status

The Patches By Status widget shows the total number of patches by the status.
Click the status to filter the Vulnerability Assessment Table by the status.