I would like to automatically create remediation task anytime a Known Exploit Vulnerability (KEV( is added to the catalog. Sometimes, 1 CVE is added at a time and other times it might be several. Due to the way we ingest vulnerability data, we ingest using tenable plugins instead of CVE. Right now our current process that creates remediation task is by filtering using the CVEs field in the Third Party Vulnerability Entry Table. See attachment Screenshot. I have the following integrations for reference:
1. NIST National Vulnerability Database Integration - API (CVE only)
2. CISA Known Exploit Vulnerability Integration
3. Tenable.sc Integration (Query Filter- All active Plugins)
