OVAL - Open Vulnerability and Assessment Language

The Open Vulnerability and Assessment Language, part of the SCAP standard, is declarative language for making logical assertions about the state of endpoint system.

Key Online Resources

• OVAL, Project Homepage [Online, 2024-04-03]
• The OVAL Project, Github Organization [Online, 2024-04-03]

Adoption

OVAL reached industry wide adoption in the mid 2010s. Currently it is being replaced in many places by propriatery models and CSAF-VEX.