Risk-based vulnerability management
Reduce risk with continuous vulnerability assessment, risk-based prioritization, and remediation.
Focus on what matters
Track and mitigate risks with ease
Get comprehensive coverage
Watch the video
Get ahead of threats
Continuously discover, prioritize, and remediate the biggest risks to organizations across endpoints and cloud workloads.
Key capabilities
Proactively reduce risk to your organization with Defender Vulnerability Management.
- Discover vulnerabilities in real time
- Reduce risks with continuous assessments
- View prioritized security recommendations
- Block vulnerable applications
- Seamlessly remediate and track progress
Discover vulnerabilities in real time
Detect risk across managed and unmanaged endpoints with built-in-modules and agentless scanners, even when devices aren’t connected to the corporate network.
Reduce risks with continuous assessments
Eliminate periodic scans and access entity-level inventories of devices, software applications, digital certificates, browser extensions, and firmware assessments.
View prioritized security recommendations
Focus on threats that pose the highest risk with a single view of prioritized recommendations from multiple security feeds.
Block vulnerable applications
Proactively block known vulnerable versions of apps or warn users with customized desktop alerts.
Seamlessly remediate and track progress
Connect teams with built-in workflows and integrations. Track progress and trends in real time with remediation tracking and device reports.
Discover vulnerabilities in real time
Detect risk across managed and unmanaged endpoints with built-in-modules and agentless scanners, even when devices aren’t connected to the corporate network.
Reduce risks with continuous assessments
Eliminate periodic scans and access entity-level inventories of devices, software applications, digital certificates, browser extensions, and firmware assessments.
View prioritized security recommendations
Focus on threats that pose the highest risk with a single view of prioritized recommendations from multiple security feeds.
Block vulnerable applications
Proactively block known vulnerable versions of apps or warn users with customized desktop alerts.
Seamlessly remediate and track progress
Connect teams with built-in workflows and integrations. Track progress and trends in real time with remediation tracking and device reports.
Compare plans
For Defender for Endpoint Plan 2 and Microsoft 365 E5 customers
Microsoft Defender Vulnerability Management
Microsoft Defender Vulnerability Management
CAD $2.60
user/month
(Includes up to five devices per user; annual subscription—auto renews)
Plus applicable tax
Defender for Endpoint Plan 2 and Microsoft 365 E5 customers can add new advanced vulnerability management tools to their existing subscription with the Defender Vulnerability Management add-on.
Key capabilities:
- Security baseline assessment
- Authenticated scans for vulnerability assessment
- Browser plug-ins assessment
- Digital certificate assessment
- Network shares analysis
- Hardware and firmware assessment
- Block vulnerable applications
*Requires Defender for Endpoint Plan 2 or Microsoft 365 E5 license.
(Includes up to five devices per user; annual subscription—auto renews)
For other customers, complement your endpoint detection and response (EDR) solution
Microsoft Defender Vulnerability Management standalone (currently in preview)
Complement your EDR solution with the Defender Vulnerability Management standalone to meet your vulnerability management program needs.
Includes all the premium capabilities in the Defender Vulnerability Management add-on, plus:
- Vulnerability assessment
- Configuration assessment
- Continuous monitoring
- Threat analytics and threat intelligence
- Risk-based prioritization
- Remediation tracking
Vulnerability management capabilities in the cloud
Defender Vulnerability Management capabilities are also available in Microsoft Defender for Servers.
Related products
Microsoft Defender for Endpoint
Defender for Endpoint delivers leading endpoint security to rapidly stop attacks, scale your security resources, and evolve your defenses.
Microsoft Secure Score
Microsoft Secure Score provides visibility, assessment, and intelligent guidance to strengthen your security.
Microsoft Defender for Servers
Defender for Servers is a workload protection plan that provides advanced threat protection for servers running in Azure, AWS, GCP, and on premises.
Documentation and latest updates
Documentation
Learn about each capability in depth and how it can help you protect your organization.
Download the solution brief
Explore how Defender Vulnerability Management helps discover, assess, and remediate risk.
Latest updates
Learn about the latest innovations in vulnerability management from Microsoft.
Protect everything
Defender Vulnerability Management delivers asset visibility, intelligent assessments and prioritization, and built-in remediation tools for Windows, macOS, Linux, Android, iOS, and network devices to prioritize and address critical vulnerabilities and misconfigurations across your organization. It provides continuous monitoring and alerts through the agent-based module built into devices and authenticated scanning. Using Microsoft threat intelligence, breach likelihood predictions, business contexts, and device assessments, Defender Vulnerability Management rapidly and continuously prioritizes the biggest vulnerabilities on your most critical assets and provides security recommendations to mitigate risk. Automated remediation tools, built-in workflows, and real-time measurements through your organization’s exposure score, Microsoft Secure Score for Devices, and security baseline assessment empower teams to bridge workflow gaps, quickly reduce risk, and track progress across the organization.