~/Cedric

No audit policy Vulnerabilities

No training on the equipment or software used Vulnerabilities

Do staff members have the correct training? Do staff members have the correct qualifications? What is the staff turnover rate? Are interns, temporary workers etc. used?

Abuse of rights Threats

Someone with special rights (network administration, computer specialists, etc.) modifies the operating characteristics of the resources.

No event logging Vulnerabilities

7f9eab9f-4f02-11e9-b3ea-0800277f0571 Risks

Asset: Operating system. Threat: Denial of actions. Vulnerability: Use of an obsolete version of the operating system or applications

7f9ead64-4f02-11e9-b3ea-0800277f0571 Risks

Asset: Operating system. Threat: Malware infection. Vulnerability: Possibility of remote system administration

7f9eac2c-4f02-11e9-b3ea-0800277f0571 Risks

Asset: Operating system. Threat: Corruption of data. Vulnerability: The SNMP layer is activated

7f9eaf57-4f02-11e9-b3ea-0800277f0571 Risks

Asset: Operating system. Threat: Corruption of data. Vulnerability: No restriction on software entry points

7f9eaead-4f02-11e9-b3ea-0800277f0571 Risks

Asset: Operating system. Threat: Major accident. Vulnerability: Single copy of licence contracts

7f9eae20-4f02-11e9-b3ea-0800277f0571 Risks

Asset: Operating system. Threat: Forging of rights. Vulnerability: Possibility of remote administration of the system using non-encrypted administration tools