Application Security metrics

Available metrics

The following metrics are available for Application Security.

Vulnerabilities

Metric name	Dynatrace version	Description	Dimensions (values)
Open security problems (global)	1.225+	Number of currently open vulnerabilities seen within the last minute. The metric value is independent of any configured management zone (and thus global).	Risk level (`Critical`, `High`, `Medium`, `Low`, `None`) Type (`Third-party vulnerability`, `Code-level vulnerability`) Vulnerable component type¹ (`Library`, `Runtime`) Public internet exposure (`Public internet exposure`, `No public internet exposure`, `Public internet exposure not available`) Reachable data assets (`Reachable data assets`, `No reachable data assets`, `Reachable data assets not available`) Vulnerable functions (`Vulnerable functions in use`, `No vulnerable functions in use`, `Vulnerable functions not available`) Assessment accuracy (`Full accuracy`, `Reduced accuracy`, `Accuracy not available`) Public exploit (`Public exploit published`, `No public exploit published`)
New open security problems (global)	1.222+	Number of vulnerabilities that were recently created. The metric value is independent of any configured management zone (and thus global).
New muted security problems (global)	1.222+	Number of vulnerabilities that were recently muted. The metric value is independent of any configured management zone (and thus global).
Open security problems (split by management zone)	1.231+	Number of currently open vulnerabilities seen within the last minute. The metric value is split by management zone.	Risk Level (`Critical`, `High`, `Medium`, `Low`, `None`) Type (`Third-party vulnerability`, `Code-level vulnerability`) Management zone name Vulnerable component type¹ (`Library`, `Runtime`) Public internet exposure (`Public internet exposure`, `No public internet exposure`, `Public internet exposure not available`) Reachable data assets (`Reachable data assets`, `No reachable data assets`, `Reachable data assets not available`) Vulnerable functions (`Vulnerable functions in use`, `No vulnerable functions in use`, `Vulnerable functions not available`) Assessment accuracy (`Full accuracy`, `Reduced accuracy`, `Accuracy not available`) Public exploit (`Public exploit published`, `No public exploit published`)
New open security problems (split by management zone)	1.231+	Number of vulnerabilities that were recently created. The metric value is split by management zone.
New resolved security problems (global)	1.222+	Number of vulnerabilities that were recently resolved. The metric value is independent of any configured management zone (and thus global).	Risk level (`Critical`, `High`, `Medium`, `Low`, `None`) Type (`Third-party vulnerability`, `Code-level vulnerability`) Vulnerable component type¹ (`Library`, `Runtime`) Public exploit (`Public exploit published`, `No public exploit published`)

Only available for third-party vulnerabilities.

Affected entities

Metric name	Dynatrace version	Description	Dimensions (values)
Vulnerabilities - affected entities count	1.251+	Total number of unique affected entities across all open vulnerabilities. The metric supports the management zone selector.	Security problem ID External vulnerability ID Title Vulnerable component (the package name or `Not available`) CVE (all related CVE IDs or `Not available`) Risk level (`CRITICAL`, `HIGH`, `MEDIUM`, `LOW`, `NONE`) Technology (`Java`, `.NET`, `Node.js`, `PHP`, `GO`) Type (`Third-party vulnerability`, `Code-level vulnerability`)

Affected process groups

Metric name	Dynatrace version	Description	Dimensions (values)
Vulnerabilities - affected entities count	1.251+	Total number of unique affected entities across all open vulnerabilities. The metric supports the management zone selector.	Security problem ID External vulnerability ID Title Vulnerable component (the package name or `Not available`) CVE (all related CVE IDs or `Not available`) Risk level (`CRITICAL`, `HIGH`, `MEDIUM`, `LOW`, `NONE`) Technology (`Java`, `.NET`, `Node.js`, `PHP`, `GO`) Type (`Third-party vulnerability`, `Code-level vulnerability`)

Attacks

Metric name	Dynatrace version	Description	Dimensions (values)
New attacks	1.271+	Number of attacks that were recently created¹. The metric is management zone aware based on the process group dimension.	Status (`Blocked`, `Allowlisted`, `Exploited`) Type (`SQL injection`, `CMD injection`, `JNDI injection`) Process group (`builtin` — primary entity for the management zone selector)

This metric uses the timestamp when Dynatrace Cluster stores the attacks. As a result, there might be slight differences between the timestamp of the reported attacks metric and the timestamp of the attacks detected by OneAgent.

View

To view Application Security metrics

In the Dynatrace menu, go to Metrics.
Filter for the category of metrics you want, for example affected process groups.
- If you don't see results, turn off Only show metrics reported after the start of the selected timeframe.
- You can add more filters (Tag, Unit, Favorites). See Filter and sort the table for details.
Expand Details for any metric to see metric details and a chart of the metric over the selected timeframe. For more information, see Metrics browser.

Example metric details:

Usage

You can use Application Security metrics to

Use case examples

To keep an eye on the number of attacks over time, create a chart for the New attacks metric and pin it to your dashboard.
To view the current status of affected entities in your environment and see how the process of remediating vulnerabilities is developing, create a chart for the Vulnerabilities - affected entities count metric and pin it to your dashboard.

Once you run a query in Data explorer, you can