Updated on 2024-08-14 GMT+08:00

Vulnerability Scan (Manual)

To view real-time vulnerabilities of a server, you can manually scan for vulnerabilities.

Periodically scanning for asset vulnerabilities helps reduce asset damage risks. This section describes how to scan for vulnerabilities.

Manual Vulnerability Scan

  1. Log in to the management console.
  2. Click in the upper left corner of the page, select a region, and choose Security > Host Security Service.
  3. In the navigation pane, choose Prediction > Vulnerabilities.
  4. Click Scan in the upper right corner of the Vulnerabilities page.
  5. In the Scan for Vulnerability dialog box displayed, select the vulnerability type and scope to be scanned. For more information, see Table 1.

    Table 1 Parameters for manual scan vulnerabilities

    Parameter

    Description

    Type

    Select one or more types of vulnerabilities to be scanned. Possible values are as follows:

    • Linux
    • Windows
    • Web-CMS
    • Application

    Scan

    Select the servers to be scanned. Possible values are as follows:

    • All servers
    • Selected servers

      You can select a server group or search for the target server by server name, ID, EIP, or private IP address.

    NOTE:

    The following servers cannot be selected for vulnerability scan:

    • Servers that are not in the Running state
    • Servers whose agent status is Offline

  6. Click OK.
  7. Click Manage Task in the upper right corner of the Vulnerabilities page. On the Manage Task slide-out panel displayed, click the Scan Tasks tab to view the status and scan result of the vulnerability scan task.

    Click the number next to the red figure in the Scan Result column to view information about the servers that fail to be scanned.

    You can also choose Asset Management > Servers & Quota and scan a single server for vulnerabilities on the Servers tab. The procedure is as follows:

    1. Click a server name.
    2. Choose Vulnerabilities.
    3. Choose the vulnerability type to be scanned and click Scan.

Automatic Vulnerability Scan

  1. Log in to the management console.
  2. Click in the upper left corner of the page, select a region, and choose Security > Host Security Service.
  3. In the navigation pane, choose Prediction > Vulnerabilities.
  4. In the upper right corner of the Vulnerabilities page, click Configure Policy to set the vulnerability scan period and scope.

    • Scan Period
      • Scan period: The default value is 00:00:00 - 07:00:00 and cannot be changed.
      • Scan Period: Select Every day, Every three days, or Every week.
    • Scan
      • Select the servers to scan: Click Select Server to Scan. On the server management page displayed, select the servers to be scanned.

        The following servers cannot be selected for vulnerability scan:

        • Servers are protected by basic edition .
        • Servers that are not in the Running state
        • Servers whose agent status is Offline

  1. Click Manage Task in the upper right corner of the Vulnerabilities page. On the Manage Task slide-out panel displayed, click the Scan Tasks tab to view the status and scan result of the vulnerability scan task.

    Click the number next to the red figure in the Scan Result column to view information about the servers that fail to be scanned.