The Vulnerability Prevention page displays the vulnerabilities that can be exploited by network attacks and allows you to enable defense against these attacks. Security Center automatically detects the vulnerabilities and synchronizes the detection results to Cloud Firewall. You can activate Cloud Firewall and configure defense rules of the intrusion prevention system (IPS) to prevent the vulnerabilities from being exploited. This way, your assets are protected.
Background information

Limits
Enterprise Edition and Ultimate Edition of Cloud Firewall support the vulnerability prevention feature. Free trial edition and Premium Edition do not support this feature.
You cannot manually initiate vulnerability scans on the Vulnerability Prevention page.
Vulnerability statistics
- Unprevented: the number of your vulnerable assets that are not protected by Cloud Firewall. Traffic to these assets does not pass through Cloud Firewall, or IPS blocking is not enabled for these assets.
- Prevented: the number of your vulnerable assets for which Cloud Firewall is activated and IPS defense rules are configured. Cloud Firewall defends against the network attacks that exploit these vulnerabilities.
- Applications: the number of vulnerable assets.
- Intrusions Blocked: the number of times network attacks are blocked by Cloud Firewall after Cloud Firewall is activated and IPS defense rules are configured for your vulnerable assets.
Vulnerabilities that can be detected
- Web CMS: website builder vulnerabilities that are detected by comparing vulnerability files with the vulnerability library. Common website builders are identified by monitoring website directories. For more information, see Web-CMS vulnerabilities.
- Application: weak passwords of system services and vulnerabilities of system and application services. For more information, see Application vulnerabilities.
- Emergency: emergency vulnerabilities that have been exposed on the Internet recently. For more information, see Urgent vulnerabilities.
Vulnerability status
- Prevented: Cloud Firewall provides protection against the vulnerability.
- Unprevented: Cloud Firewall does not provide protection against the vulnerability.
- Partially Prevented: The vulnerability prevention feature is enabled for some ECS instances.