SecOps forum

Resolved! Roles for creating reports and dashboards?

Hi community, What roles are required to create reports and dashboards in the VR module?Are additional roles required or is sn_vul.vulnerability_admin sufficient?

How are the scanned applications mapped to the existing cmdb applications in AVR

How to trigger the risk calculator when VI is imported?

Hi, How can I trigger risk calculator when Vulnerable items are imported from Tenable integration. When data is imported in Vulnerable items table, "Risk rating" should be updated based on conditions I set in calculator. I can do that manually but l...

Resolved! reassign Vulnerable item to another assignment group?

Hi, I wonder what happens if a vulnerable items were automatically assigned to the wrong assignment group during import? What type of functionality should be implemented or configured when a Vulnerable item needs to be reassigned to another assignmen...

Resolved! Role for "Request Exception" on Vulnerable item?

Hi, What kind of roles do I need to see on the "Request Exception" button for vulnerable items?According to docs I created a user with sn_vul.remediation_owner role, but I cannot see VI and "Request Exception" button in form view.

Resolved! Reapply assignments when CIs get updated

Scenario: We have several VITs with CIs that were, at first, manual entered without an OS version. This does not match our assignment rules. Days later, they were eventually updated and discovered with an OS version. After attempting to Apply assignm...

CVSS base score?

Hi, I have a quick question. Where can I find a CVSS base score in instance? Is a CVSS base score is a risk score in Vulnerable item?

Resolved! There is a record with incomplete matching with CI in VIT generation by Vulnerability Response

Linking vulnerability data from third-party scanners (Qualys) to Snow instancesWe are building a flow to generate VIT with Vulnerability Response for CI detected by Discovery (registered in CMDB).It seems that there are records in the VIT that are in...

Resolved! Exception Expiry notification

Hi, I am looking to change the notification to be sent 14 days before expiry, but I cant find the field where I can make this change. Does anyone know where to make that change? I think by default it is 7 days. Notification Name: Exception on VG is...

Resolved! Fixed Vulnerable Items are not changing to closed status even after detected closed/fixed by Qualys?

I am finding multiple vulnerable items that are remaining in Open status, even after Qualys no longer detects them. The Vulnerable Item Detection (DET#) shows them with a Status of Closed and a Source Status of Fixed, however the VIT# still shows as ...

State Change Approvals in Vulnerability item are auto rejected in Vulnerability Response

Hi, We are working on Vulnerability respo se. In VIT record if clicked on "Request exception" the state change approvals are triggering and in Review state. Within few seconds the state change approval is auto rejected. I didn't find anything related...

Fixed Vulnerable Items still show open in Servicenow

We have some vulnerable items that only show a single Open detection, but do not seem to be recorded the Closed/Fixed detection. These items no longer exist in Qualys and wondering why Servicenow still shows them as open. We have rescanned and Servic...

IT Remediation Workspace > Modify VIT View

Really like the view of a VIT when going through the IT Remediation Workspace module. However, we would like to add a custom field to the view. Any ideas on how we can do that? The typical options to change the view is not available, so we are not...

Resolved! VITs not always linked to VULs

We have recently upgraded to Vulnerability response 15.0.2 and we integrate with Rapid7 insight VM but I have realized that not every VIT necessarily points to a VUL, i think that i have seen the explanation of this behavior but I dont remember what ...

Resolved! Tenable Import is slow

Hi Team, We have implemented Tenable.sc integration to ServiceNow. Somehow the Import is quite slow. I already tried setting the CMDB Asset Chunk Size to 500. Somehow the retrieval improved but the importing process is slow. Is there anything we ca...

Forum Posts

Resolved! Roles for creating reports and dashboards?

How are the scanned applications mapped to the existing cmdb applications in AVR

How to trigger the risk calculator when VI is imported?

Resolved! reassign Vulnerable item to another assignment group?

Resolved! Role for "Request Exception" on Vulnerable item?

Resolved! Reapply assignments when CIs get updated

CVSS base score?

Resolved! There is a record with incomplete matching with CI in VIT generation by Vulnerability Response

Resolved! Exception Expiry notification

Resolved! Fixed Vulnerable Items are not changing to closed status even after detected closed/fixed by Qualys?

State Change Approvals in Vulnerability item are auto rejected in Vulnerability Response

Fixed Vulnerable Items still show open in Servicenow

IT Remediation Workspace > Modify VIT View

Resolved! VITs not always linked to VULs

Resolved! Tenable Import is slow

Information on _queryMatch

Where is the documentation for the Integration Ins...

Make vulnerable items untraceable in non-prod envi...

Not getting Approval in Policy & Compliance Manage...

ServiceNow and CrowdStrike VR Integration

What is the impact in Vulnerability Response of le...

Custom Table when pulled as a related list, 'Edit'...

Any way to see what Vulnerability Calculator was u...

WatchDog for monitoring long running transactions

please provide the processof major incident manage...

Vulnerability Response - how is table related serv...

SOLVED: How to recalculate Risk Rating for Remedia...

Vul Response Risk Score being updated to 0 when al...

Can we switch from ci lookup rule to IRE for CI id...

need some inputs on how to hide catalogs on basis ...