Skip to technology filters Skip to main content
Dynatrace Hub

Extend the platform,
empower your team.

Popular searches:
Home hero bg
VulnerabilitiesVulnerabilities
Vulnerabilities

Vulnerabilities

Detect and prioritize vulnerabilities to improve your environment's security.

App
Free trialDocumentation
The prioritization page shows the overview of vulnerabilities in your environment in real-time while adding context and automated risk assessments.The details view shows meaningful insights into the impact of the vulnerability: risk, exposure, affected processes, reachable assets, and more.Davis Security Advisor recommends fixes consisting of library updates in the monitored technologies, helping your team prioritize the most critical vulnerabilities in your environment.The overview page of the affected entities allows you to inspect the vulnerability impact on specific process groups and track their remediation progress.
  • Product information
  • Release notes

Overview

Vulnerabilities is our Dynatrace Runtime Vulnerability Analytics platform experience for detecting, visualizing, analyzing, monitoring, and remediating vulnerabilities across your application stack. You can:

  • Detect code-level, third-party, and runtime vulnerabilities in your application code, displaying all issues in a combined, prioritized view
  • Search and filter vulnerabilities based on specific parameters while exploring their potential impact
  • Optimize remediation to fix the vulnerabilities

Use cases

  • Prioritize third-party, code-level, and runtime vulnerabilities based on Davis Security Score, which combines CVSS with observability context.
  • Understand what is at risk and why: view affected processes, related services, applications, and hosts, as well as Kubernetes workloads, nodes, and clusters.
  • Zoom into vulnerabilities based on a specific risk vector: are affected entities accessible from the public internet or connected to data assets? Is there a public exploit available?
  • Optimize remediation activities using recommendations from Davis Security Advisor: determine which patches and upgrades to apply for maximum remediation impact.
  • Address remediation: connect remediable entities to your ticketing system.

Drive automation use cases and access security findings and details via the API.

Get started

  1. Activate Application Security
  2. Assign permissions
  3. Enable and configure Dynatrace Runtime Vulnerability Analytics
  4. Ask your administrator to install Vulnerabilities from the Dynatrace Hub.
Dynatrace
DocumentationMore Information
By Dynatrace
Dynatrace support center
Subscribe to new releases
Copy to clipboard

Full version history

ReleaseDate

Full version history

2.5.0

Minor Changes

  • Split the status column into two separate columns displaying the mute status and vulnerability/affected entity state.

Patch Changes

  • Updated icons.
  • Improved word break handling for remediation tracking status.
  • Improved labeling of the vulnerability types in the table and filter bar.
  • Added "About this app" to the help menu.
  • Improved app error handling when the Davis Security Recommendations endpoint is not reachable.
  • Improved assessment icon tooltips.

Full version history

2.4.0

Minor Changes

  • Added improved input based suggestions when inserting a valid CVE or display id into the filter.
  • Added dynamic suggestions for title filter.

Patch Changes

  • Settings are no longer shown when setting:schemas:read permission is missing.
  • Improved styling of intent links.
  • Fixed an issue with sorting in the vulnerable component card.
  • Fixed an issue where the settings button would appear when permissions were missing.
  • Fixed incorrectly setting page parameters on navigation.
  • Improved error message verbosity.
  • Improved visual feedback when invalid timeframe is selected.
  • Unified appearance of bulk actions on the Kubernetes nodes and process group overview page table.

Full version history

2.3.2

Patch Changes

  • Unified minor UI inconsistencies.

2.3.1

Patch Changes

  • Internal technical improvements

2.3.0

Minor Changes

  • Updated help menu and added settings menu.
  • Added Davis Security Advisor recommendations to the prioritization page.
  • Introduced the "What's new" section.

Patch Changes

  • Restricted Edit Application Protection settings button visibility based on permissions.
  • Prevented line breaks in filter field values.
  • Improved accessibility
  • Improved prioritization table behavior and performance.

Full version history

2.2.0

Minor Changes

  • Improved missing permission error messages.
  • Added download functionality to the affected entities table.
  • Added support for supplying a timeframe via intents.

Patch Changes

  • Changed "last detected on" to "open since" in subline of Code-level vulnerability details header.
  • Fixed the tooltip of the status bar in the Exploit and Threats card.
  • Fixed incorrect styling of affected entities header.
  • Made Vulnerabilities table display an empty table in case there are no results.
  • Small wording changed in the entry points card highlight hint.
  • Fixed "open with" intent button opening the exploits data with the wrong visualization type.
  • Fixed affected entity dropdown last update section to be always set to "Process group unmuted" by default (no event).

Full version history

2.1.0

Minor Changes

  • The app now remembers last set filter segments.

Patch Changes

  • Improved the error description for missing permissions.

Full version history

1.3.1

Patch Changes

  • The year is now included in timestamps.
  • Fixed inconsistent vulnerable function states on the risk assessment card of code-level vulnerabilities.

1.3.0

Minor Changes

  • You can navigate to the Davis Security Score card of a third-party vulnerability from the Prioritization page (expand a row, then select Davis Security Score).

Patch Changes

  • Prioritization table sorting has been disabled for more than 500 vulnerabilities.
  • Related entities in the vulnerability details now include mobile, custom, and Data Center RUM applications.

Full version history

1.3.0

Minor Changes

  • You can navigate to the Davis Security Score card of a third-party vulnerability from the Prioritization page (expand a row, then select Davis Security Score).

Patch Changes

  • Prioritization table sorting has been disabled for more than 500 vulnerabilities.
  • Related entities in the vulnerability details now include mobile, custom, and Data Center RUM applications.

Full version history

1.2.0

Minor Changes

  • Removed last updated timestamp.
  • Made the vulnerabilities table scrollable.

Patch Changes

  • Fixed a bug where the page index was not being reset on the remediation tracking table after changing page size.
  • Adjusted the sort order for the 'Status' column of the vulnerabilities table.
  • Renamed the 'Last detected' column header of the vulnerabilities table to 'Open since'.
  • Additional minor improvements.

Full version history

1.1.0

Minor Changes

  • Added the "Fix recommendations" card to the details page of a TPV.
  • Added links to the process group and Kubernetes node overview cards.

Patch Changes

  • Improved the vulnerabilities table performance.
  • Fixed the vulnerabilities table not being sortable by ID, status, and attacks.
  • Fixed intent handling for vulnerability ID.
  • Fixed the details card layout overflowing when the description contains a code block.
  • Fixed the vulnerabilities table expandable disappearing when all columns are hidden.
  • Fixed the CLV entry-point payloads not being separated by line breaks.

Full version history

1.0.0

Major Changes

  • Initial release
Dynatrace Hub
Get data into DynatraceBuild your own app
All (770)Log Management and AnalyticsKubernetesAI and LLM ObservabilityInfrastructure ObservabilitySoftware DeliveryApplication ObservabilityApplication SecurityDigital ExperienceBusiness Analytics
Filter
Type
Built and maintained by
Deployment model
SaaS
  • SaaS
  • Managed
Partner FinderBecome a partnerDynatrace Developer

Discover recent additions to Dynatrace

Problems logo

Problems

Analyze abnormal system behavior and performance problems detected by Davis AI.

Logs logo

Logs

Explore all your logs without writing a single query.

Security Investigator logo

Security Investigator

Fast and precise forensics for security and logs on Grail data with DQL queries.

Business Flow logo

Business Flow

Track, analyze, and optimize your critical business processes.

Cost & Carbon Optimization logo

Cost & Carbon Optimization

Track, analyze, and optimize your IT carbon footprint and public cloud costs.

Davis Anomaly Detection logo

Davis Anomaly Detection

Detect anomalies in timeseries using the Davis AI

Analyze your data

Understand your data better with deep insights and clear visualizations.

Notebooks logo

Notebooks

Create powerful, data-driven documents for custom analytics and collaboration.

Dashboards logo

Dashboards

Transform complex data into clear visualizations with custom dashboards.

Automate your processes

Turn data and answers into actions, securely, and at scale.

Workflows logo

Workflows

Automate tasks in your IT landscape, remediate problems, and visualize processes

Jira logo

Jira

Create, query, comment, transition, and resolve Jira tickets within workflows.

Slack logo

Slack

Automate Slack messaging for security incidents, attacks, remediation, and more.

Secure your cloud application

See vulnerabilities and attacks in your environment.

Security Overview logo

Security Overview

Get a comprehensive overview of the security of your applications.

Code-Level Vulnerabilities logo

Code-Level Vulnerabilities

Detect vulnerabilities in your code in real time.

Threats & Exploits logo

Threats & Exploits

Understand, triage, and investigate application security findings and alerts.

Are you looking for something different?

We have hundreds of apps, extensions, and other technologies to customize your environment

Leverage our newest innovations of Dynatrace Saas

Kick-start your app creation

Kick-start your app creation

Whether you’re a beginner or a pro, Dynatrace Developer has the tools and support you need to create incredible apps with minimal effort.
Go to Dynatrace Developer
Upgrading from Dynatrace Managed to SaaS

Upgrading from Dynatrace Managed to SaaS

Drive innovation, speed, and agility in your organization by seamlessly and securely upgrading.
Learn More
Log Management and Analytics

Log Management and Analytics

Innovate faster and more efficiently with unified log management and log analytics for actionable insights and automation.
Learn more