Qualys Internal web application vulnerabilities not synched to snow

bharanikumar20
Tera Expert

Qualys web application scan has reported a Low vulnerability which was not synched with snow.

We couldn't find any VIT record created for this vulnerability.

Do we have any specific criteria to create VIT records

7 REPLIES 7

andy_ojha
ServiceNow Employee
ServiceNow Employee

Hey there,

 

The ServiceNow built Store Application for Qualys

  • Qualys Integration for Security Operations (built by ServiceNow)
  • Primarily focuses on Qualys VM, and uses the Qualys Host Detection APIs to import "infrastructure" flavor types of Vulnerabilities (e.g. servers, network gear, computers, - via scans, cloud agents, etc).
  • It can also connect to Qualys PC for Policy Compliance / secure configuration (hardening) results and findings

A separate integration approach and ServiceNow Store Application, targets the Qualys WAS

bharanikumar20
Tera Expert

I would like to know the reason , why vulnerable items are not getting created for low vulnerability 

Hi @bharanikumar20 
can you share me the below screenshot configuration which you have done.

SatishkumarB_0-1721678970237.png

 

……………………………………………………………………………………………………

Please Mark it helpful👍 and Accept Solution✔️!! If this helps you to understand. 

Hi @Satishkumar B , Thanks for your time, Here is the screenshot which you have requested.

Capture526.JPG