Hi All,
We have an integration with Tenable for our SN's Vulnerability Response.
Lately I've got such a requirement:
Vulnerable items should be marked as exception each time when CI scanned in Tenable has superseded patches in it.
Has anyone had any experience with CIs with superseded patches in Tenable that were exported to SN? How to configure that?
I mean, I know how to create exception rule, that's not a problem. The issue is that I connot find any filed on VI (CVE?) that indicates a superseded patch. Also, based on VR architecture superseded patch would be marked on CVE, and not on VI directly, right? So can I dotwalk it somehow, while configuring condition for exception rule?
Thanks for any advice.
