This subsection of the report lists the impact of each vulnerability; that is, what an attacker can do to the organization's assets. These pointers help the organization assess the level of security that the business asset has. The C-level executives will know what assets of the organization need critical fixes right away.