| 主权项 |
1. A vulnerability identification and resolution (VIR) computer device for identifying security vulnerabilities in a computer system, said VIR computer device comprising:
a memory device for storing data including data representing computing assets installed in the computer system; and a processor in communication with said memory device, said VIR computer device programmed to:
track a plurality of computing assets of an organization based on the data stored within the memory device, wherein each computing asset includes an asset version;provide a plurality of asset identifiers to a user computer device, wherein each asset identifier is configured to identify at least one asset version of the plurality of computing assets;receive at least one asset identifier selection from the user computer device identifying the at least one asset version of the computing asset, wherein the asset identifier selection is selected from the plurality of asset identifiers;execute a query on at least one database storing security vulnerabilities, the query searching for security vulnerability data associated with the selected computing asset;receive said security vulnerability data at the VIR computer device in response to the query, wherein the security vulnerability data includes a security vulnerability identifier that identifies a security vulnerability and a proposed resolution identifier that identifies a proposed resolution;provide proposed resolution data associated with the proposed resolution, the proposed resolution configured to resolve the security vulnerability when applied to the selected computing asset; andelectronically display an impact score, wherein the impact score indicates a qualitative determination of an impact of a vulnerability associated with each asset identifier based at least in part on a number of instances associated with each asset identifier. |
