In a vulnerability management process, an accepted risk is a finding which you do not wish to receive further alerts about. There are several reasons why you may accept a risk:

  1. It is by design. For example: ports 443 and 80 are intentionally open on web servers.
  2. It is a false positive.
  3. It is too low of a priority for you and your team to take time to fix. This is often the case with low threat level findings.

HostedScan Security makes it easy to mark risks as accepted and cut out noisy findings. You can also add notes to accepted risks and use tags to accept risks for an entire group related targets. Get started managing risks at