Case studyFortune 100: 80% less compliance workRead the Story
RiskWatch
Compliance support · documentation

Vulnerabilities

User Guide: Vulnerabilities for Compliance Management Application Welcome to the Vulnerabilities of our Compliance Management application! This feature allows users to create, edit and delete the Vulnerabilities. This guide will walk you through the functionality and capabilities of the Vulnerabilities in detail. Overview of Vulnerabilities In risk management, a vulnerability is a weakness in an asset that can be exploited by a threat.

Updated 2026-05-14DocumentationRiskWatch platform

What is the Vulnerabilities module in RiskWatch?

User Guide: Vulnerabilities for Compliance Management Application Welcome to the Vulnerabilities of our Compliance Management application! This feature allows users to create, edit and delete the Vulnerabilities. This guide will walk you through the functionality and capabilities of the Vulnerabilities in detail. Overview of Vulnerabilities In risk management, a vulnerability is a weakness in an asset that can be exploited by a threat. It sits inside the RiskWatch compliance workspace and shares its data with assessments, the evidence vault, and the audit-pack export so a single change updates every downstream view.

How do I use the Vulnerabilities screen?

Open the RiskWatch app, navigate to the Vulnerabilities module from the main menu, and apply the filters or actions described in the guide below. Permissions follow your role profile, so admins see configuration, assessors see workflow actions, and viewers see read-only data. Saved views and filters persist per user across sessions.

Key concepts in this module
VulnerabilitiesOverview of VulnerabilitiesVulnerability -Threat -Risk -Accessing Vulnerabilities screen

User Guide: Vulnerabilities for Compliance Management Application

Welcome to the Vulnerabilities of our Compliance Management application! This feature allows users to create, edit and delete the Vulnerabilities. This guide will walk you through the functionality and capabilities of the Vulnerabilities in detail.

  1. Overview of Vulnerabilities

In risk management, a vulnerability is a weakness in an asset that can be exploited by a threat.

  • Vulnerability - A flaw in an asset's design, implementation, or operation that can be exploited by a threat. For example, a weak password, encryption error, or outdated firewall are all vulnerabilities.
  • Threat - A potential for a threat agent to exploit a vulnerability. Threats can be natural or human-made, accidental or deliberate.
  • Risk - The potential for loss when a threat exploits a vulnerability. Risk is calculated by multiplying the probability of a threat occurring by the cost to the asset owner

Vulnerabilities are added to the questions. Inactive vulnerabilities will have no access in other parts of application.

  1. Accessing Vulnerabilities screen

Vulnerabilities accessible for only Admin and Manager Roles.

To Access Vulnerabilities screen, follow below steps

  1. Navigate to Main Menu
  2. Select Content Manager screen
  3. Select Vulnerabilities menu
  4. Adding Vulnerabilities
  5. Adding Vulnerabilities from Vulnerabilities screen
  • Go to Vulnerabilities screen
  • Go to Add Vulnerability screen
  • Fill out the fields, such as
    • Vulnerability
    • Status
    • Description
  • Click on ‘Save’ button
  1. Adding Vulnerability using Bulk upload
  • Navigate to Main Menu
  • Go to Content Manager
  • Select Bulk upload
  • Go to ‘Categories and Typings’ tab
  • Select ‘Upload New Data’ to download the sheet
  • Enter Vulnerabilities in the sheet
  • Click on Upload
  1. Adding Vulnerabilities from Add Question screen
  • Go to Content Manager
  • Go to Question Register screen
  • Click on Add Question button
  • Go to Vulnerability field
  • You can select the existing Vulnerability or create new using (+) symbol
  1. Editing Vulnerabilities

Vulnerabilities can be edited using Vulnerabilities screen

  • Go to Action Column
  • Click on the Edit Symbol to change the edit the name of Vulnerability with following fields such as
    • Vulnerability
    • Description
    • Status
  • Click on ‘Save’ button
  1. Deleting Vulnerabilities

Vulnerabilities can be deleted using Vulnerabilities screen

  • Go to Action Column
  • Click on the Delete Symbol
  • Confirmation message displayed

Already mapped Vulnerability cannot be deleted

  1. Language Options for Vulnerabilities

To cater to diverse user needs, the vulnerabilities screen supports multiple languages. You can select your preferred language from the dropdown menu located at the top of the screen. This ensures that Vulnerabilities screen displayed in the selected language, accessible and understandable across global teams.

  1. Vulnerabilities Events

Events shows the information of all the logs of the Vulnerabilities created, updated and deleted. . When Vulnerability is created, Events Action Performed is displayed as ‘Create’. When Vulnerability is edited, events action performed displayed as ‘Updated’ and when Vulnerability is deleted, events Action Performed displayed as ‘Delete’.

Following functionality available in Vulnerabilities events screen

  1. Filter options available and we can run and save the filters. Saved filters are reused for future use.
  2. Column Sorting is available for Sort By option by selecting the columns names Action Performed, Performed By, Screen, Action Date and Action Info.
  3. Search option available by searching any word or text, if search text is available, it will display the search content.
  4. Downloading data of tasks event in pdf format
  5. Column display options available using hide/seek columns, if columns are not selected columns will not displayed in tasks events.
  6. Vulnerabilities questionnaires
  7. How to open Vulnerabilities screen?

Vulnerabilities screen accessed from below navigation

  • Navigate to Main Menu
  • Select Content Manager screen
  • Select Vulnerabilities menu
  1. How to create Vulnerability?
  • Go to Vulnerability screen
  • Click on Add Vulnerability button
  • Fill out the fields, such as
    • Vulnerability
    • Status
    • Description
  • Click on ‘Save’ button

Default status of the Vulnerability saved as Active. Description saves the information of the Vulnerability is added.

  1. How to edit Vulnerability?
  • Open the Vulnerability screen
  • Go to Action Column
  • Click on the Edit Symbol to change the Vulnerability with following fields such as
    • Vulnerability
    • Status
    • Description
  • Click on ‘Save’ button
  • After edit the Vulnerability name is updated in the Question number, where it is mapped previously.
  1. How to delete the Vulnerabilities?
  • Open the Vulnerability screen
  • Go to Action Column
  • Click on the Delete Symbol
  • Confirmation message displayed

Already mapped Vulnerability cannot be deleted.

  1. How to inactive the Vulnerability?
  • Open the Vulnerability screen
  • Go to Action Column
  • Click on the Right Symbol to inactive the Vulnerability
  • If it is mapped to the question number, it is not allowed to made inactive
  1. How to Sort from Vulnerability screen?
  • Open the Vulnerability screen
  • Go to top of the screen
  • Go to Sort By field by these items Vulnerability Name, Description and Status.
  • Select the ‘Vulnerability Name’ in the Sort By field, Vulnerability Name column is sorted.
  • Select the ‘Description’ in the Sort By field, Description column is sorted.
  • Select the ‘Status’ in the Sort By field, Status column is sorted.

Check that after sort, the text displayed in Ascending and Descending order.

  1. How to download the Vulnerability data?
  • Open the Vulnerability screen
  • Click on Down Arrow symbol right side of the screen
  • Data exported excel sheet
  1. Can we hide/seek Vulnerability screen columns?
  • Open the Vulnerability screen
  • Go to Right side of the screen
  • Click on See/hide column
  • Selected list items columns are displayed on the screen
  • Un selected columns are not displayed on the screen
  1. Can we save and run the filters?

Yes, using filter options we can run and save the filters. Saved filters are reused for future use.

Filters allow user to get the record easily.

  1. How to Search records on the Vulnerabilities screen?
  • Open Vulnerabilities screen
  • Go to Search field
  • Enter the data in the search field
  • If searched record available on the screen, it shows on the screen

Common questions about Vulnerabilities

What does the Vulnerabilities module integrate with?+

The Vulnerabilities screen shares records with the rest of the RiskWatch compliance suite: Vulnerabilities, Overview of Vulnerabilities, Vulnerability -, Threat -, plus the cross-mapping engine that connects compliance controls to other frameworks like ISO 27001, SOC 2, HIPAA, NIST 800-53, and PCI DSS. There is nothing to wire up, the integrations are native.

Where does the Vulnerabilities fit in the RiskWatch compliance workflow?+

It is one of 38 screens that make up the Compliance module. Most teams reach it from the compliance dashboard while running an assessment or reviewing posture. See the related-topics sidebar for the workflows it feeds into and the upstream screens that feed it.

References and related standards

Standards and references the Vulnerabilities module aligns with, plus related RiskWatch documentation.

Stuck on this workflow?

Talk to support, or have a solutions engineer walk you through the workflow on your tenant.

Contact supportBook a walkthrough
All Compliance support topics
Request a Demo