💼 11.3.2 External vulnerability scans are performed.
-
Contextual name: 💼 11.3.2 External vulnerability scans are performed.
-
ID:
/frameworks/pci-dss-v4.0.1/11/03/02 -
Located in: 💼 11.3 External and internal vulnerabilities are regularly identified, prioritized, and addressed.
Description​
As follows:
- At least once every three months.
- By a PCI SSC Approved Scanning Vendor (ASV).
- Vulnerabilities are resolved and ASV Program Guide requirements for a passing scan are met.
- Rescans are performed as needed to confirm that vulnerabilities are resolved per the ASV Program Guide requirements for a passing scan.
Similar​
- Sections
/frameworks/pci-dss-v4.0/11/03/02
Similar Sections (Take Policies From)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 PCI DSS v4.0 → 💼 11.3.2 External vulnerability scans are performed. | 1 |
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 PCI DSS v4.0 → 💼 11.3.2 External vulnerability scans are performed. | 1 |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 11.3.2.1 External vulnerability scans are performed after any significant change. |