What is a vulnerability scan?
A vulnerability scan uses automated tools to identify known security issues through matching conditions with known vulnerabilities.
What do you get?
The tool automatically sets the risk level for the results of the scan and no manual verification or interpretation of the results prior to issue takes place. This is great for identifying technical vulnerabilities at a low financial cost. However, it also generates a high level of false positives while missing certain types of issues. This limits the overall level of assurance gained.