Port Scans

Oracle Cloud Infrastructure Vulnerability Scanning Service helps identify ports in your Compute instances that are unintentionally left open. Open ports might be a potential attack vector to your cloud resources or enable hackers to exploit other vulnerabilities.

Note

The Vulnerability Scanning service makes no security determination on open ports. You must assess whether these ports should be open on the specified IP addresses, and if they shouldn't be open, take appropriate action.

The Vulnerability Scanning service performs port scans only if all the following are true:

The Vulnerability Scanning service creates a separate report for each Compute instance that you added to the target configurations. The report has the same name as the instance.

The Vulnerability Scanning service saves the results for a Compute instance in the same compartment as the instance's Vulnerability Scanning target.

Consider the following example.

  • The Compute instance MyInstance is in CompartmentA.
  • MyInstance is specified in Target1.
  • Target1 is in CompartmentB.
  • All reports related to MyInstance are in CompartmentB.

This section contains the following topics: