💼 11.3.2 External vulnerability scans are performed.
- ID:
/frameworks/pci-dss-v4.0/11/03/02
Description​
As follows:
- At least once every three months.
- By a PCI SSC Approved Scanning Vendor (ASV).
- Vulnerabilities are resolved and ASV Program Guide requirements for a passing scan are met.
- Rescans are performed as needed to confirm that vulnerabilities are resolved per the ASV Program Guide requirements for a passing scan.
Similar​
- Sections
/frameworks/pci-dss-v3.2.1/11/02/02/frameworks/pci-dss-v4.0.1/11/03/02
- Internal
- ID:
dec-c-34809f2c
- ID:
Similar Sections (Take Policies From)​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 PCI DSS v3.2.1 → 💼 11.2.2 Perform quarterly external vulnerability scans, via an Approved Scanning Vendor (ASV) approved by the Payment Card Industry Security Standards Council (PCI SSC). | no data | ||||
| 💼 PCI DSS v4.0.1 → 💼 11.3.2 External vulnerability scans are performed. | 1 | no data |
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 PCI DSS v3.2.1 → 💼 11.2.2 Perform quarterly external vulnerability scans, via an Approved Scanning Vendor (ASV) approved by the Payment Card Industry Security Standards Council (PCI SSC). | no data | ||||
| 💼 PCI DSS v4.0.1 → 💼 11.3.2 External vulnerability scans are performed. | 1 | no data |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 11.3.2.1 External vulnerability scans are performed after any significant change. | no data |