CVSS base score?
Hi, I have a quick question. Where can I find a CVSS base score in instance? Is a CVSS base score is a risk score in Vulnerable item?
Forum Posts
Resolved! There is a record with incomplete matching with CI in VIT generation by Vulnerability Response
Linking vulnerability data from third-party scanners (Qualys) to Snow instancesWe are building a flow to generate VIT with Vulnerability Response for CI detected by Discovery (registered in CMDB).It seems that there are records in the VIT that are in...
Resolved! Exception Expiry notification
Hi, I am looking to change the notification to be sent 14 days before expiry, but I cant find the field where I can make this change. Does anyone know where to make that change? I think by default it is 7 days. Notification Name: Exception on VG is...
Resolved! Fixed Vulnerable Items are not changing to closed status even after detected closed/fixed by Qualys?
I am finding multiple vulnerable items that are remaining in Open status, even after Qualys no longer detects them. The Vulnerable Item Detection (DET#) shows them with a Status of Closed and a Source Status of Fixed, however the VIT# still shows as ...
State Change Approvals in Vulnerability item are auto rejected in Vulnerability Response
Hi, We are working on Vulnerability respo se. In VIT record if clicked on "Request exception" the state change approvals are triggering and in Review state. Within few seconds the state change approval is auto rejected. I didn't find anything related...
Fixed Vulnerable Items still show open in Servicenow
We have some vulnerable items that only show a single Open detection, but do not seem to be recorded the Closed/Fixed detection. These items no longer exist in Qualys and wondering why Servicenow still shows them as open. We have rescanned and Servic...
IT Remediation Workspace > Modify VIT View
Really like the view of a VIT when going through the IT Remediation Workspace module. However, we would like to add a custom field to the view. Any ideas on how we can do that? The typical options to change the view is not available, so we are not...
Resolved! VITs not always linked to VULs
We have recently upgraded to Vulnerability response 15.0.2 and we integrate with Rapid7 insight VM but I have realized that not every VIT necessarily points to a VUL, i think that i have seen the explanation of this behavior but I dont remember what ...
Resolved! Tenable Import is slow
Hi Team, We have implemented Tenable.sc integration to ServiceNow. Somehow the Import is quite slow. I already tried setting the CMDB Asset Chunk Size to 500. Somehow the retrieval improved but the importing process is slow. Is there anything we ca...
Resolved! SNOW and Red Canary
I'm wondering if anyone has any information or experience with setting up Red Canary threat and vulnerability with SNOW. Any documentation, suggestions or links I can review would be a great help. Thanks
Resolved! Vulnerability Closed-Ignored in Qualys
Hello, I closed-Ignored the vulnerability in Qualys manually for a reason. When i ran the Host Detection Integration that particular VIT still shows as Active - Open in Servicenow Should the Integration set it to Close state in Servicenow too? we are...
Resolved! Tenable For ITSM - Incident rules
Hi Everyone, I'm doing POC on Tenable for ITSM, I want to test this Incident Rules but I'm currently having issues with the import part as there is a large amount of data and it is always stuck. I was trying to manually execute the Incident Rules, bu...
Resolved! Change risk score when cvss score changes, is this possible using vulnerability calculator?
Hi, Does anyone know if we can Change risk score when cvss score changes on a vul item? is this possible using vulnerability calculator? I tried using calculator but it doesnt work for me. Can anyone one help on this? Do i need to do a business rule...
Resolved! Dummy Data for testing CI Lookup rules
Hello everyone, Unfortunately on current stage of project I can't integrate Qualys with dev instance. I need to prepare some 'dummy data' for testing CI Lookup Rule and getting familiar with them. Is any possibility to insert 'dummy data' into some k...
Auto Reapply Vulnerability Calculator
Hi there, is it possible to have a vulnerability calculator reapply with a scheduled job? If yes, how so? I am trying to find a way to reference the vulnerability calculator in a scheduled job but I can't find a way. According to the SN docs it seem...
