Axonius Documentation
  1. Asset Cloud
  2. Exposures
  3. Axonius Vulnerability Score (AVS)

Fields Used in AVS Calculation

Axonius uses multiple fields (AVS Factors) to calculate the final AVS. Some of them are computed by Axonius while others employ AI-powered calculation.

AI-Computed Fields

UI Field NameValue / Value RangeField ImpactRisk Contribution
Configuration RequirementCommonEffects Common/Default DeploymentsRisk-increasing
Configuration RequirementRareEffects Specific DeploymentsRisk-reducing
Is Perimeter DeviceTrueTargeting Perimeter Management DeviceRisk-increasing
Is Perimeter DeviceFalseNo Perimeter Security RoleNone
Prevalence Score<= 3Rarely Used Product In The WildRisk-reducing
Prevalence Score4-7Common Product In The WildNone
Prevalence Score>= 8Very Common Product In The WildRisk-increasing
Is Open SourceTrueEffects Open Source ProductsRisk-increasing
Is Open SourceFalseProduct Is Privately OwnedRisk-reducing

Axonius-Computed Fields

UI Field NameValue / Value RangeField ImpactRisk Contribution
Is Zero DayFirst Seen \<= 30 And Added To Kev \<= 30 And Exploit = AttackedZero DayRisk-increasing
Exploit MaturityAttackedAttacked In The WildRisk-increasing
Exploit MaturityProof_Of_ConceptExploit Code ExistsRisk-increasing
Exploit MaturityNot_ReportedNo Exploitation Signal FoundRisk-reducing
Exploitation Activity Timeline\<= 30Very Recent Exploitation ActivityRisk-increasing
Exploitation Activity Timeline\<= 180New Exploitation ActivityRisk-increasing
Exploitation Activity Timeline\>= 365Stale Exploitation ActivityRisk-reducing
Exploitation Activity Timeline< 365 And > 180Exploitation Activity AgingRisk-reducing
Vulnerability Disclosure Timeline\<= 30Recently Disclosed VulnerabilityRisk-increasing
Vulnerability Disclosure Timeline\<= 180New VulnerabilityNone
Vulnerability Disclosure Timeline\<= 1095Established VulnerabilityRisk-reducing
Vulnerability Disclosure Timeline> 1095Long-Standing VulnerabilityRisk-reducing
Attack VectorNetworkRequires Network AccessRisk-increasing
Attack VectorAdjacentRequires Adjacent Network AccessNone
Attack VectorLocalRequires Local Machine AccessRisk-reducing
Attack VectorPhysicalRequires Physical AccessRisk-reducing
Privileges RequiredNoneNo Auth RequiredRisk-increasing
Privileges RequiredLowRequires User AuthenticationRisk-reducing
Privileges RequiredHighRequires Admin AuthenticationRisk-reducing
User InteractionNoneDoesn't Require User InteractionRisk-increasing
User InteractionPassive / Required / ActiveRequires User InteractionRisk-reducing
Product TypeOSExploit Targets Operating SystemsRisk-increasing
Product TypeHardwareExploit Targets HardwareRisk-increasing
Product TypeApplicationExploit Targets ApplicationsRisk-increasing
Product TypePackageExploit Targets Packages/ExtensionsRisk-increasing
Product Count\>= 100Affects Large Product EcosystemRisk-increasing
Product Count\>= 10Affects Multiple ProductsRisk-increasing
Product Count< 10Limited Product ScopeNone
Exploit References0No Public Exploit ReferencesRisk-reducing
Exploit References< 5Very Few Exploit ReferencesRisk-reducing
Exploit References\>= 5Multiple Exploit ReferencesRisk-increasing
Exploit References\>= 10Extensively Documented ExploitRisk-increasing
EPSS Score\>= 0.90Very High EPSS ScoreRisk-increasing
EPSS Score> 0.60High EPSS ScoreRisk-increasing
EPSS Score\>= 0.1 & \<= 0.6Moderate EPSS ScoreRisk-reducing
EPSS Score< 0.10Low EPSS ScoreRisk-reducing