# Vulnerability Assessment Report

**Organization:** [Client Name]
**Assessment Date:** [YYYY-MM-DD]
**Assessor:** [Name / Firm]

---

## Summary

This vulnerability assessment identified [N] findings across [systems]. Findings are rated using CVSS 3.1 base scores per FIRST standards.

---

## Scope & Methodology

- **Assets assessed:** [List]
- **Methods:** Authenticated scanning, manual validation, configuration review

---

## Findings Summary

| ID | Title | Severity | CVSS | Status |
|----|-------|----------|------|--------|
| VA-01 | [Title] | High | 8.1 | Open |

---

## Finding VA-01: [Title]

**Severity:** High
**CVSS Vector:** CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
**CWE:** CWE-XXX

### Description
[Technical description of the weakness.]

### Evidence
[Scan output, screenshot, or manual test result.]

### Risk
[What an attacker could achieve.]

### Recommendation
[Prioritized remediation steps.]

---

*Template from PoCcraft — https://poccraft.com*
