Extent to which an organization and/or stakeholder (18.104.22.168) is subject to an event (22.214.171.124).
Source: ISO Guide 73:2009(E/F), Risk Management – Vocabulary, First Edition, 2009. Global Standards
The condition of being unprotected, thereby allowing access to information or access to capabilities that an attacker can use to enter a system or network.
Adapted from: NCSD glossary.
Source: NICCS™ Portal Cybersecurity Lexicon, National Initiative for Cybersecurity Careers and Studies (https://niccs.us-cert.gov/glossary) as of 11 November 2015, Global Standards