Descripción general de la evaluación de vulnerabilidades de software
Organiza tus páginas con colecciones
Guarda y categoriza el contenido según tus preferencias.
Security Command Center ofrece varios servicios que detectan vulnerabilidades en los contenedores, los sistemas operativos y el software que se encuentran en las VMs, y las aplicaciones web. El lugar en el que se pueden detectar las vulnerabilidades depende del servicio en la nube
que uses.
Los resultados de este servicio tienen una categoría de CONTAINER_IMAGE_VULNERABILITY.
Panel de postura de seguridad de Kubernetes: Te proporciona conclusiones prácticas y bien definidas sobre posibles problemas de seguridad en tus clústeres de Google Kubernetes Engine (GKE).
Los resultados de este servicio se emiten en las clases de resultados VULNERABILITY y MISCONFIGURATION.
VM Manager: Identifica vulnerabilidades en los sistemas operativos que se instalan en las VMs, incluidas las vulnerabilidades y exposiciones comunes (CVE).
Los resultados de este servicio tienen una categoría de OS_VULNERABILITY.
Vulnerability Assessment for Google Cloud: Ayuda a descubrir vulnerabilidades de software críticas y de alta gravedad en tus instancias de VM de Compute Engine sin instalar agentes.
Los resultados de este servicio tienen categorías de OS_VULNERABILITY y SOFTWARE_VULNERABILITY.
Web Security Scanner: Identifica las vulnerabilidades de seguridad en tus aplicaciones web de App Engine, GKE y Compute Engine.
[[["Fácil de comprender","easyToUnderstand","thumb-up"],["Resolvió mi problema","solvedMyProblem","thumb-up"],["Otro","otherUp","thumb-up"]],[["Difícil de entender","hardToUnderstand","thumb-down"],["Información o código de muestra incorrectos","incorrectInformationOrSampleCode","thumb-down"],["Faltan la información o los ejemplos que necesito","missingTheInformationSamplesINeed","thumb-down"],["Problema de traducción","translationIssue","thumb-down"],["Otro","otherDown","thumb-down"]],["Última actualización: 2025-09-05 (UTC)"],[],[],null,["Security Command Center offers multiple services that detect vulnerabilities in\ncontainers, the operating systems and software found in VMs, and web\napplications. Where vulnerabilities can be detected depends on the cloud service\nyou're using.\n\n\u003cbr /\u003e\n\nAWS\n\n[**Vulnerability Assessment for AWS**](/security-command-center/docs/vulnerability-assessment-aws-overview):\nDetects vulnerabilities in the following AWS resources:\n\n- Software packages installed on [Amazon EC2 instances](https://aws.amazon.com/ec2/).\n- Software packages and operating system misconfigurations in Elastic Container Registry (ECR) images.\n\nThe findings from this service have a category of `SOFTWARE_VULNERABILITY`.\n\nGoogle Cloud\n\n- [**Artifact Registry vulnerability assessment**](/security-command-center/docs/concepts-security-sources#ar-vuln-assessment):\n Finds vulnerabilities in container images stored in Artifact Registry or\n deployed to one of the following assets:\n\n - App Engine\n - Cloud Run job\n - Cloud Run\n - Google Kubernetes Engine cluster\n\n The findings from this service have a category of\n `CONTAINER_IMAGE_VULNERABILITY`.\n- [**Kubernetes security posture dashboard**](/security-command-center/docs/concepts-security-sources#gke-security-posture-dashboard):\n Provides opinionated, actionable findings about potential security issues\n in your Google Kubernetes Engine (GKE) clusters.\n\n The findings from this service are issued in the `VULNERABILITY` and\n `MISCONFIGURATION` finding classes.\n- [**VM Manager**](/security-command-center/docs/concepts-security-sources#vm_manager):\n Identifies vulnerabilities in operating systems that are installed on VMs,\n including Common Vulnerabilities and Exposures (CVEs).\n\n The findings from this service have a category of `OS_VULNERABILITY`.\n- [**Vulnerability Assessment for Google Cloud**](/security-command-center/docs/vulnerability-assessment-google-cloud):\n Helps to discover critical and high severity software vulnerabilities in\n your Compute Engine VM instances without installing agents.\n\n The findings from this service have categories of `OS_VULNERABILITY` and\n `SOFTWARE_VULNERABILITY`.\n- [**Web Security Scanner**](/security-command-center/docs/concepts-web-security-scanner-overview):\n Identifies security vulnerabilities in your App Engine,\n GKE, and Compute Engine web applications."]]