Multilayered Security Beyond Vulnerabilities

xZETA is a cloud-based security management tool that scans vehicle software to identify known and undisclosed vulnerabilities, malware, ransomware, advanced persistent threats, and backdoor attacks.

Manage the SBOM Centrally

xZETA automatically creates a software bill of materials (SBOM) from binaries and firmware, enabling you to centrally manage the SBOM for different pieces of ECU firmware. xZETA also allows exporting the SBOM in SPDX format, an international open standard, so that you can conveniently share it with OEMs.

Ensure License Compliance to Reduce Risk

xZETA offers open-source license visibility over the SBOM. It helps you reduce the cost and risk of intellectual property with greater visibility into licensing obligations and attribution requirements. xZETA also allows exporting license information in SPDX format.

Prioritize Vulnerabilities by Impact

In addition to the CVSS rating, xZETA provides another rating called the VicOne Vulnerability Impact Rating (VVIR).* The VVIR defines your impact status based on various parameters, including system context, usage behavior, and threat intelligence, so that you can focus on the vulnerabilities that have the greatest impact on your system.

*Patent pending

Continuously Monitor the System to Avoid Blind Spots

As automotive cyberthreats keep on evolving, continuous monitoring for zero-day vulnerabilities is critical. xZETA can automatically scan your system on a regular basis and notify you if your system is affected, empowering you toward compliance with ISO/SAE 21434.

Integrate CI/CD for Higher Efficiency

To improve efficiency and ensure code quality, xZETA can be integrated with your existing continuous integration and continuous delivery or deployment (CI/CD) process. After code building, the system can automatically extract the SBOM and context information from open sources and can scan for vulnerabilities.

Detect Malicious Behavior via Virtual ECU Analysis

xZETA enables you to simulate your running environment in its automotive-grade virtual analyzer.* This allows you to monitor suspicious behavior and detect potential malware, ransomware, advanced persistent threats, and backdoors in your vehicle’s software. xZETA also automatically generates a detailed analysis report for your reference.

*Patent pending

Why xZETA?

Global Leader in Vulnerability Reporting

Trend Micro’s Zero Day Initiative (ZDI) was responsible for 64% of all zero-day vulnerabilities reported globally in 2021.* VicOne, as a subsidiary of Trend Micro, builds on this leadership position, which has been unrivaled since 2007.

*Source: Omdia, “Quantifying the Public Vulnerability Market,” May 2022

True Compliance

xZETA helps automotive OEMs and Tier 1 suppliers quickly achieve ISO/SAE 21434 and UN R155 compliance and increase operational efficiency.

Open Source Security Expert

As a member of the Open Source Security Foundation, a part of the Linux Foundation, VicOne works to improve the security of open-source software for the automotive industry.

Continuous Threat Intelligence

xZETA is bolstered by the full support of 10,000+ ZDI researchers and the backing of Interpol, the FBI, and other international law enforcement agencies — enabling you to get the protection you need faster.

Tin T. Nguyen
Tin T. Nguyen
Director of the Automotive Cybersecurity Division of VinCSS

We utilize the xZETA system to demonstrate our effective vulnerability management capabilities to auditors, which helps us meet the requirements of UN R155.
Read Partner Story|Watch Testimonial Video

YC Chang
YC Chang
Senior Director at Askey’s Automotive Product Unit

The xZETA system delivers almost immediate results … accelerating our product development efficiency. … In a recent case, we went from vulnerability scan to patch deployment in just two weeks, a major improvement from the previous six-month time frame.
Read Partner Story|Watch Testimonial Video

VicOne as a provider of solutions that analyze data collected from ECUs in the cloud to flag anomalous behavior, enabling remote cybersecurity monitoring of connected vehicles, was mentioned by Gartner® in the report “Life Cycle Management of Software-Defined Vehicles: Step 1 — Software Bill of Materials.”

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose. Gartner is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.

Target Sectors

Tier 1 Suppliers

Secure your components and supply chain

Consumer OEMs

Secure your cars and fleets

Commercial OEMs

Secure your trucks and service vehicles


Secure your electric vehicles

EV Charger Manufacturers

Secure your EV chargers

Autonomous Suppliers

Secure your autonomous cars

Know More From Our Resources

Gain Insights Into Automotive Cybersecurity
View More

Accelerate Your Automotive Cybersecurity Journey Today

Request a Demo