Definition[]
A Security Vulnerability Assessment (SVA) is the process of determining the likelihood of an adversary successfully exploiting a vulnerability, and the resulting degree of damage or impact. SVAs are not a quantitative risk analysis, but are performed qualitatively using the best judgment of security and safety professionals. The determination of risk is the desired outcome of an SVA, so that it provides the basis for rank ordering of the security-related risks and establishes priorities for the implementation of countermeasures.