Vulnerability scans were conducted on selected servers, networks, websites, and applications. This report contains the discovered potential risks from these scans. Risks have been classified into categories according to the level of threat and degree of potential harm they may pose.
Below is the total number of risks found by severity. High risks are the most severe and should be evaluated first. An accepted risk is one which has been manually reviewed and classified as acceptable to not fix at this time, such as a false positive or an intentional part of the system's architecture.
This report includes findings for 1 target that were scanned. Each target is a single URL, IP address, or fully qualified domain name (FQDN).
This section contains the vulnerability findings for each target that was scanned. Prioritize the most vulnerable assets first.
The total number of risks found for each target, by severity.
| Target | Critical | High | Medium | Low | Accepted |
|---|---|---|---|---|---|
| 0 | 0 | 0 | 0 | 0 |
The risks discovered for each target.
Total Risks
The OWASP ZAP active web application scan crawls the pages of a web application. It scans for all of the passive scan checks and additionally makes requests and submits forms to actively test an application for even more vulnerabilities. The active scan checks for vulnerabilities such as SQL injection, remote command execution, XSS, and more.
Total number of risks found by severity.
Summary list of all detected risks.
| Title | Threat Level | Open | Accepted | |
|---|---|---|---|---|
| No risks detected | ||||
The OWASP ZAP passive web application scan crawls the pages of a web application. It inspects the web pages as well as the requests and responses sent between the server. The passive scan checks for vulnerabilities such as cross-domain misconfigurations, insecure cookies, vulnerable js dependencies, and more.
Total number of risks found by severity.
Summary list of all detected risks.
| Title | Threat Level | Open | Accepted | |
|---|---|---|---|---|
| No risks detected | ||||
The SSLyze security scan checks for misconfigured SSL/TLS certificates, expired certificates, weak ciphers, and SSL/TLS vulnerabilities such as Heartbleed.
Total number of risks found by severity.
Summary list of all detected risks.
| Title | Threat Level | Open | Accepted | |
|---|---|---|---|---|
| No risks detected | ||||
The OpenVAS network vulnerability scan tests servers and internet connected devices for over 50,000 vulnerabilities. OpenVAS uses the Common Vulnerability Scoring System (CVSS) to quantify the severity of findings. 0.0 is the lowest severity and 10.0 is the highest.
Total number of risks found by severity.
Summary list of all detected risks.
| Title | Threat Level | CVSS Score | Open | Accepted |
|---|---|---|---|---|
| No risks detected | ||||
The NMAP TCP port scan discovers open TCP ports with a complete scan of ports 0 to 65535.
Total number of risks found by severity.
Summary list of all detected risks.
| Title | Threat Level | Open | Accepted | |
|---|---|---|---|---|
| No risks detected | ||||
The NMAP UDP port scan discovers open ports of common UDP services
Total number of risks found by severity.
Summary list of all detected risks.
| Title | Threat Level | Open | Accepted | |
|---|---|---|---|---|
| No risks detected | ||||
This report was prepared using
HostedScan Security ®
For more information, visit hostedscan.com
Founded in Seattle, Washington in 2019, HostedScan, LLC. is dedicated to making continuous vulnerability scanning and risk management much more easily accessible to more businesses.
HostedScan, LLC.
2212 Queen Anne Ave N
Suite #521
Seattle, WA 98109