[](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) ![x close icon to close mobile navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/x-black.svg) [![Cortex Cloud logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/cortexcloud-logo-dark.svg)](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) ![magnifying glass search icon to open search field](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/search-black.svg) * [](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) * 用例 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 用例 用例 * [Cortex Cloud](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown) 由统一数据、AI 和自动化提供助力的实时云安全 * [应用安全](https://www.paloaltonetworks.cn/cortex/cloud/application-security?ts=markdown) 从源头阻止风险 * [云态势安全](https://www.paloaltonetworks.cn/cortex/cloud/cloud-posture-security?ts=markdown) 快速确定任何云中的风险优先级并进行补救 * [云运行时安全](https://www.paloaltonetworks.cn/cortex/cloud/runtime-security?ts=markdown) 实时预防云攻击 * [安全运营](https://www.paloaltonetworks.cn/cortex?ts=markdown) 检测、调查和应对整个企业和云中的威胁 * 解决方案 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 解决方案 [应用安全](https://www.paloaltonetworks.cn/cortex/cloud/application-security?ts=markdown) * [应用安全态势管理 (ASPM)](https://www.paloaltonetworks.cn/cortex/cloud/application-security-posture-management?ts=markdown) * [软件供应链安全](https://www.paloaltonetworks.cn/cortex/cloud/software-supply-chain-security?ts=markdown) * [IaC 安全](https://www.paloaltonetworks.cn/cortex/cloud/infrastructure-as-code-security?ts=markdown) * [软件构成分析](https://www.paloaltonetworks.cn/cortex/cloud/software-composition-analysis?ts=markdown) * [机密安全](https://www.paloaltonetworks.cn/cortex/cloud/secrets-security?ts=markdown) * [开放合作伙伴生态系统](https://www.paloaltonetworks.cn/cortex/cloud/appsec-partner-ecosystem?ts=markdown) [云态势安全](https://www.paloaltonetworks.cn/cortex/cloud/cloud-posture-security?ts=markdown) * [云安全态势管理 (CSPM)](https://www.paloaltonetworks.cn/cortex/cloud/cloud-security-posture-management?ts=markdown) * [云基础架构权限管理 (CIEM)](https://www.paloaltonetworks.cn/cortex/cloud/cloud-infrastructure-entitlement-management?ts=markdown) * [数据安全态势管理 (DSPM)](https://www.paloaltonetworks.cn/cortex/cloud/data-security-posture-management?ts=markdown) * [AI 安全态势管理 (AI-SPM)](https://www.paloaltonetworks.cn/cortex/cloud/ai-security-posture-management?ts=markdown) * [漏洞管理](https://www.paloaltonetworks.cn/cortex/cloud/vulnerability-management?ts=markdown) * [云攻击面管理 (ASM)](https://www.paloaltonetworks.cn/cortex/cloud/attack-surface-management?ts=markdown) [云运行时安全](https://www.paloaltonetworks.cn/cortex/cloud/runtime-security?ts=markdown) * [云检测与响应 (CDR)](https://www.paloaltonetworks.cn/cortex/cloud-detection-and-response?ts=markdown) * [容器和 Kubernetes 安全](https://www.paloaltonetworks.cn/cortex/cloud/container-security?ts=markdown) * [云工作负载保护 (CWP)](https://www.paloaltonetworks.cn/cortex/cloud/cloud-workload-protection?ts=markdown) * [API 安全](https://www.paloaltonetworks.cn/cortex/cloud/api-security?ts=markdown) * [Web 应用安全](https://www.paloaltonetworks.cn/cortex/cloud/web-application-security?ts=markdown) [安全运营](https://www.paloaltonetworks.cn/cortex/?ts=markdown) * [Cortex XSIAM](https://www.paloaltonetworks.cn/cortex/cortex-xsiam?ts=markdown) * [Cortex XDR](https://www.paloaltonetworks.cn/cortex/cortex-xdr?ts=markdown) * [Cortex XSOAR](https://www.paloaltonetworks.cn/cortex/cortex-xsoar?ts=markdown) * [Cortex Xpanse](https://www.paloaltonetworks.cn/cortex/cortex-xpanse?ts=markdown) * [Unit 42 托管检测和响应](https://www.paloaltonetworks.cn/cortex/managed-detection-and-response?ts=markdown) * [产品之旅](https://www.paloaltonetworks.com/cortex/cloud/product-tours?ts=markdown) * 资源 ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) 资源 学习 * [博客](https://www.paloaltonetworks.com/blog/cloud-security/?lang=zh-hans) * [云研究](https://www.paloaltonetworks.com/cortex/cloud/research) * [Cyberpedia](https://www.paloaltonetworks.cn/cyberpedia?ts=markdown) * [Live Community](https://live.paloaltonetworks.com/) * [互动研讨会](https://www.paloaltonetworks.com/cortex/cloud/interactive-workshops) 产品信息 * [技术文档](https://docs.paloaltonetworks.com/) * [开源项目](https://www.paloaltonetworks.com/cortex/cloud/open-source-projects) * [支持](https://support.paloaltonetworks.com/Support/Index) 资源 * [技术合作伙伴](https://www.paloaltonetworks.com/partners/technology-partners) * [客户成功案例](https://www.paloaltonetworks.cn/customers?ts=markdown) * [资源中心](https://www.paloaltonetworks.cn/resources?ts=markdown) * [事件](https://events.paloaltonetworks.com) * * [申请演示](https://www.paloaltonetworks.cn/cortex/cloud/trial?ts=markdown) ![palo alto networks logo icon](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/logo-default.svg) ![white arrow icon pointing left to return to main Palo Alto Networks site](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-white.svg) [](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) 搜索 Close search modal *** ** * ** *** # 漏洞管理 检测、确定优先级并修复从代码到云的漏洞。 ![漏洞管理前](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortexcloud/usecases/vulnerability-management/vulnerability-management-front1.png) ![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/x-white.svg) ![漏洞管理前](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortexcloud/usecases/vulnerability-management/vulnerability-management-front1.png) 重要意义我们的方法功能 * [重要意义](#why) * [我们的方法](#approach) * [功能](#modules) {#why} ## 每当一个新的安全漏洞浮出水面,攻击者就会争先恐后地寻找脆弱的应用程序,以利用其弱点。企业需要一种更快、更简单的方法来发现盲点,确定云中各个应用程序的漏洞优先级。 ### 对云漏洞的可视性不足。 安全团队和开发团队无法了解整体云环境中的漏洞,也很难了解漏洞会影响哪些资源。 ### 缺乏风险情境。 不是所有漏洞都是一样的,有些漏洞会因多种风险因素而带来更高的风险,因此很难对风险进行优先排序。 ### 补救效率低下。 安全团队和开发团队通常都有复杂的工作流程来查找漏洞的根本原因、合适的修复方法和应用程序所有者,这使得补救工作变得更加复杂。 ## 管理从代码到云的漏洞并确定其优先级 Cortex^®^ Cloud 有助于发现盲点、根据情境确定漏洞的优先级并管理跨应用程序(虚拟机、容器、Kubernetes^®^、无服务器和开源软件)的补救措施。 * 代码到云漏洞管理 * 支持公有云和私有云部署 * 无代理扫描和基于代理的保护 * ![icon](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/usecases/vulnerability-management/Code-to-Cloud-Vulnerability-74x74.svg) 代码到云可视性 * ![icon](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/usecases/vulnerability-management/Vulnerability-management-74x74.svg) 基于情境和风险的优先排序 * ![icon](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/usecases/vulnerability-management/Software-composition-analysis-74x74.svg) 补救和预防漏洞 {#approach} 解决方案 ## 我们的漏洞管理方法 ### 代码到云可视性 保护云原生应用需要全面了解应用生命周期中的漏洞。Cortex Cloud 为每个主机、容器和无服务器功能提供跨公有云、私有云和本地环境的漏洞的集中视图。 * #### 代码到云可视性 洞悉环境中的所有漏洞,包括源码包、git 存储库、注册表、部署的映像、主机和正在运行的应用程序。 \* #### 灵活的部署选项。 通过代理和无代理扫描,了解虚拟机、容器、kubernetes 和无服务器功能中的漏洞。对任何云环境中的任何应用程序实现 100% 持续覆盖。 \* #### 通过单独的用户界面管理风险。 通过智能风险评分可视化主机操作系统、容器镜像和无服务器功能中的风险。 [![代码到云可视性](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortexcloud/usecases/vulnerability-management/Code-to-Cloud-Visibility.png)](#prismastickyimagecomapproach1_prisma-custom-background_prismacustombackgrou_819784551_cleanParsys_vulnerability-management_cloud_cortex_zh_CN_pan_content_) ### 基于情境和风险的优先排序 减少警报疲劳,凸显应优先处理的漏洞。将漏洞与多种风险因素相关联,包括外部暴露、权限过度、配置错误、敏感数据和恶意软件。 * #### 攻击路径情境 重点关注包含额外风险(如互联网暴露、权限过度、敏感数据访问等)的脆弱资源,从而阻断潜在的攻击路径和横向移动风险。 \* #### 整合漏洞警报 AI 驱动的检测功能可以将众多问题转化为极少量完全情境化关联的风险。例如,Cortex Cloud 可以关联由单一基础映像或软件包引起的几十个 CVE 实例。 \* #### 查看漏洞状态和补救指南。 查看每个 CVE 的详细信息和最新的供应商修复信息,支持所有云原生技术。 \* #### 漏洞利用预测评分系统 (EPSS) 借助 EPSS 评分确定漏洞的优先级。 \* #### 找到根本原因 追溯到导致工作负载出现漏洞的源代码文件和软件包。 [![漏洞管理](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortexcloud/usecases/vulnerability-management/contextual-risk-based-prioritization.png)](#prismastickyimagecomapproach2_prisma-custom-background_prismacustombackgrou_819784551_cleanParsys_vulnerability-management_cloud_cortex_zh_CN_pan_content_) ### 补救和预防漏洞 在漏洞被恶意行为者利用之前,采用系统化的主动方法对其采取行动。 * #### AI 和自动化驱动的补救 基于 AI 的建议可以提供最优的补救措施,一次修复就可能解决多个漏洞。内置的剧本可以自动执行工作流程,加快警报的解决速度。 \* #### 查看漏洞状态和补救指南 查看每个 CVE 的详细信息和最新的供应商修复信息,支持所有云原生技术。 \* #### 警告或防止跨环境的漏洞。 设置精确的策略以提醒或防止易受攻击的组件在您的环境中运行。 \* #### 预防关键漏洞 与开发人员的存储库和工具集成,提交拉取请求修复易受攻击的软件包,在管道中阻截不需要的漏洞。 [![查找代码中的漏洞](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortexcloud/usecases/vulnerability-management/vulnerabilities-remediation.png)](#prismastickyimagecomapproach4_prisma-custom-background_prismacustombackgrou_819784551_cleanParsys_vulnerability-management_cloud_cortex_zh_CN_pan_content_) {#modules} ## 更多云态势安全功能 ### AI 安全态势管理 (AI-SPM) 获得对模型、GenAI 和人工智能供应链的可视性和控制。在新的攻击载体现身之前就加以阻止。 [了解更多](https://www.paloaltonetworks.cn/cortex/cloud/ai-security-posture-management?ts=markdown) ### 数据安全态势管理 (DSPM) 发现、分类和保护云环境中的数据。防止外泄和违反合规规定。 [了解更多](https://www.paloaltonetworks.cn/cortex/cloud/data-security-posture-management?ts=markdown) ### 云基础设施授权管理 Cortex Cloud 让您在多云环境中控制权限 [了解更多](https://www.paloaltonetworks.cn/cortex/cloud/cloud-infrastructure-entitlement-management?ts=markdown) ### 云安全态势管理 利用 Cortex Cloud 在公有云和多云环境中消除最关键的风险 [了解更多](https://www.paloaltonetworks.cn/cortex/cloud/cloud-security-posture-management?ts=markdown) {#footer} ## 产品和服务 * [实时人工智能驱动的网络安全](https://www.paloaltonetworks.cn/network-security?ts=markdown) * [Secure AI by Design](https://www.paloaltonetworks.cn/precision-ai-security/secure-ai-by-design?ts=markdown) * [Prisma AIRS](https://www.paloaltonetworks.cn/prisma/prisma-ai-runtime-security?ts=markdown) * [AI Access Security](https://www.paloaltonetworks.cn/sase/ai-access-security?ts=markdown) * [云交付的安全服务](https://www.paloaltonetworks.cn/network-security/security-subscriptions?ts=markdown) * [高级威胁预防](https://www.paloaltonetworks.cn/network-security/advanced-threat-prevention?ts=markdown) * [Advanced URL Filtering](https://www.paloaltonetworks.cn/network-security/advanced-url-filtering?ts=markdown) * [Advanced WildFire](https://www.paloaltonetworks.cn/network-security/advanced-wildfire?ts=markdown) * [Advanced DNS Security](https://www.paloaltonetworks.cn/network-security/advanced-dns-security?ts=markdown) * [企业数据丢失防护](https://www.paloaltonetworks.cn/sase/enterprise-data-loss-prevention?ts=markdown) * [Enterprise IoT Security](https://www.paloaltonetworks.cn/network-security/enterprise-iot-security?ts=markdown) * [Medical IoT Security](https://www.paloaltonetworks.cn/network-security/medical-iot-security?ts=markdown) * [工业 OT 安全](https://www.paloaltonetworks.cn/network-security/industrial-ot-security?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.cn/sase/saas-security?ts=markdown) * [新一代防火墙](https://www.paloaltonetworks.cn/network-security/next-generation-firewall?ts=markdown) * [硬件防火墙](https://www.paloaltonetworks.cn/network-security/hardware-firewall-innovations?ts=markdown) * [软件防火墙](https://www.paloaltonetworks.cn/network-security/software-firewalls?ts=markdown) * [Strata Cloud Manager](https://www.paloaltonetworks.cn/network-security/strata-cloud-manager?ts=markdown) * [SD-WAN for NGFW](https://www.paloaltonetworks.cn/network-security/sd-wan-subscription?ts=markdown) * [PAN-OS](https://www.paloaltonetworks.cn/network-security/pan-os?ts=markdown) * [Panorama](https://www.paloaltonetworks.cn/network-security/panorama?ts=markdown) * [Secure Access Service Edge](https://www.paloaltonetworks.cn/sase?ts=markdown) * [Prisma SASE](https://www.paloaltonetworks.cn/sase?ts=markdown) * [应用加速](https://www.paloaltonetworks.cn/sase/app-acceleration?ts=markdown) * [自主数字体验管理](https://www.paloaltonetworks.cn/sase/adem?ts=markdown) * [Enterprise DLP](https://www.paloaltonetworks.cn/sase/enterprise-data-loss-prevention?ts=markdown) * [Prisma Access](https://www.paloaltonetworks.cn/sase/access?ts=markdown) * [Prisma Browser](https://www.paloaltonetworks.cn/sase/prisma-browser?ts=markdown) * [Prisma SD-WAN](https://www.paloaltonetworks.cn/sase/sd-wan?ts=markdown) * [远程浏览器隔离](https://www.paloaltonetworks.cn/sase/remote-browser-isolation?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.cn/sase/saas-security?ts=markdown) * [基于 AI 的安全运营平台](https://www.paloaltonetworks.cn/cortex?ts=markdown) * [Cloud Security](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown) * [Cortex Cloud](https://www.paloaltonetworks.cn/cortex/cloud?ts=markdown) * [Application Security](https://www.paloaltonetworks.cn/cortex/cloud/application-security?ts=markdown) * [云态势安全](https://www.paloaltonetworks.cn/cortex/cloud/cloud-posture-security?ts=markdown) * [Cloud Runtime Security](https://www.paloaltonetworks.cn/cortex/cloud/runtime-security?ts=markdown) * [Prisma Cloud](https://www.paloaltonetworks.cn/prisma/cloud?ts=markdown) * [人工智能驱动的 SOC](https://www.paloaltonetworks.cn/cortex?ts=markdown) * [Cortex XSIAM](https://www.paloaltonetworks.cn/cortex/cortex-xsiam?ts=markdown) * [Cortex XDR](https://www.paloaltonetworks.cn/cortex/cortex-xdr?ts=markdown) * [Cortex XSOAR](https://www.paloaltonetworks.cn/cortex/cortex-xsoar?ts=markdown) * [Cortex Xpanse](https://www.paloaltonetworks.cn/cortex/cortex-xpanse?ts=markdown) * [Unit 42 托管检测和响应](https://www.paloaltonetworks.cn/cortex/managed-detection-and-response?ts=markdown) * [Managed XSIAM](https://www.paloaltonetworks.cn/cortex/managed-xsiam?ts=markdown) * [威胁情报和事件响应服务](https://www.paloaltonetworks.cn/unit42?ts=markdown) * [主动评估](https://www.paloaltonetworks.cn/unit42/assess?ts=markdown) * [事故响应](https://www.paloaltonetworks.cn/unit42/respond?ts=markdown) * [安全策略转型](https://www.paloaltonetworks.cn/unit42/transform?ts=markdown) * [发现威胁情报](https://www.paloaltonetworks.cn/unit42/threat-intelligence-partners?ts=markdown) ## 公司 * [关于我们](https://www.paloaltonetworks.cn/about-us?ts=markdown) * [人才招聘](https://jobs.paloaltonetworks.com/en/) * [联系我们](https://www.paloaltonetworks.cn/company/contact-sales?ts=markdown) * [企业责任](https://www.paloaltonetworks.com/about-us/corporate-responsibility) * [客户](https://www.paloaltonetworks.cn/customers?ts=markdown) * [投资者关系](https://investors.paloaltonetworks.com/) * [位置](https://www.paloaltonetworks.com/about-us/locations) * [新闻资讯](https://www.paloaltonetworks.cn/company/newsroom?ts=markdown) ## 热门链接 * [博客](https://www.paloaltonetworks.com/blog/?lang=zh-hans) * [社区](https://www.paloaltonetworks.com/communities) * [内容库](https://www.paloaltonetworks.cn/resources?ts=markdown) * [网络百科](https://www.paloaltonetworks.com/cyberpedia) * [事件中心](https://events.paloaltonetworks.com/) * [管理电子邮件首选项](https://start.paloaltonetworks.com/preference-center) * [产品清单](https://www.paloaltonetworks.cn/products/products-a-z?ts=markdown) * [产品认证](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance) * [报告漏洞](https://www.paloaltonetworks.com/security-disclosure) * [网站地图](https://www.paloaltonetworks.cn/sitemap?ts=markdown) * [技术文档](https://docs.paloaltonetworks.com/) * [Unit 42](https://unit42.paloaltonetworks.com/) * [请勿出售或分享我的个人信息](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd) ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg) * [隐私](https://www.paloaltonetworks.com/legal-notices/privacy) * [信任中心](https://www.paloaltonetworks.com/legal-notices/trust-center) * [使用条款](https://www.paloaltonetworks.com/legal-notices/terms-of-use) * [文档](https://www.paloaltonetworks.com/legal) 版权所有 © 2025 Palo Alto Networks。保留所有权利 * [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks) * [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks) * [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/) * [![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks) * [![](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://unit42.paloaltonetworks.com/unit-42-threat-vector-podcast/) * CN Select your language