What is Vulnerability, Threat, Exploit and Risk ?

What is Vulnerability,Threat,Exploit and Risk ?

 Vulnerability...

Vulnerability is defined as a flaw or a weakness inside the asset that could be used to gain unauthorized access to it. The successful compromise of a vulnerability may result in data manipulation, privilege elevation, etc.

Threat...

A threat represents a possible danger to the computer system. It represents something that an organization doesn’t want to happen. A successful exploitation of vulnerability is a threat. A threat may be a malicious hacker who is trying to gain unauthorized access to an asset.

Exploit...

An exploit is something that takes advantage of vulnerability in an asset to cause unintended or
unanticipated behavior in a target system, which would allow an attacker to gain access to data
or information.

Risk...

A risk is defined as the impact (damage) resulting from the successful compromise of an asset. For
example, an organization running a vulnerable apache tomcat server poses a threat to an organization and the damage/loss that is caused to the asset is defined as a risk.Normally, a risk can be calculated by using the following equation:
Risk = Threat * vulnerabilities * impact