We procure vulnerability information for Microsoft from Microsoft's official security guidance page. For Third-party products we obtain the vulnerability data from NIST and CVE details. For some of the third-party vendors mentioned in this document, we obtain vulnerability information for their products from the respective vendor sites.
The Professional edition offers a variety of features which includes vulnerability scanning and assessment, detection of system misconfigurations, security misconfigurations, high-risk software and web server misconfigurations. The Enterprise edition offers all the features of the Professional edition and in addition to that, it offers remediation for all the security flaws from the console. Refer our detailed edition comparison to learn about the different editions in detail.
ManageEngine Vulnerability Manager Plus brings together all the capabilities of vulnerability management under one package- right from assessment of vulnerabilities to patching them, from managing security configurations of network endpoints to hardening internet facing web servers- from a centralized console.
Whereas, ManageEngine Patch Manager Plus is an exclusive tool for automating, customizing and streamlining the entire patching process. Best suited for IT administrators who are looking out for a stand-alone patch management solution. To learn in dertail about the feature-wise comparison between the two products, refer this document.
Any of the Windows computers in your network with the requirements mentioned here can be hosted as your Central server.
Vulnerability Manager Plus offers different pricing plan for workstations and servers, and the pricing is also different for Professional and Enterprise edition. For more details on the pricing, refer to our online store.
You can track the status of high-risk software uninstallation from Deployments> Software uninstallation.
You can track the status of deployed security configurations from Deployments> Security configurations and re-deploy the failed deployments from here.
Under software vulnerabilities, patches are displayed as a resolution to fix a known threat or vulnerability.
Common Vulnerability Scoring System (CVSS v3.0) is used to assess the severity of vulnerabilities based upon the ease of exploit and the approximated potential of impact. Scores range between 1 and 10 with 10 being most severe. Additionally patches can be looked up using their CVE ID
The product currently supports security configuration management only for systems running on Windows OS