When a security analysis is performed, the results report the level of technical risk identified in the asset being analyzed, whether it is an infrastructure service or a web application.

The calculation of the level of risk is based on the international metric CVSS (Common Vulnerability Scoring System), which allows you to numerically calculate the risk associated with each vulnerability.

The scale for representing the risk is from 0 to 10 in the case of infrastructure analyzes, where 0 is considered a minimum or non-existent level of risk, and 10 the maximum level of risk.