The Vulnerability-Based Change Automation App (VCA) expands Tufin’s vulnerability management capabilities with automated vulnerability checks prior to approving network access changes. Customers can ensure there are no risky vulnerabilities in the source or destination of a change ticket before provisioning new network access. The VCA pairs well with the VMA, which enables organizations to prioritize remediation efforts and automatically apply mitigating controls by limiting access to assets with vulnerabilities. VCA provides out-of-the box integrations with leading vulnerability management providers including Qualys, Rapid7, and Tenable.
Source: https://www.helpnetsecurity.com/2021/03/08/tufin-vca/