Vulnerable item detections with Empty/deleted Vulnerable Items

Maloy Banerjee1
Tera Expert

‎08-21-2024 01:01 AM - edited ‎08-21-2024 01:01 AM

Hi All,

 

I have integrated ServiceNow with Tenable.sc and have a list of vulnerable detections that don't have the Vulnerable Item field filled. It seems like, it was deleted. Can anyone suggest what the possible root cause could be?

MaloyBanerjee1_0-1724227273817.png

 

 

Regards,

Maloy Banerjee

0 Helpfuls
  • 705 Views
4 REPLIES 4

dhanrajb
Tera Guru

‎08-21-2024 01:22 AM

Hi @Maloy Banerjee1 ,

 

Check whether Auto Flushes/Auto Delete Rules Enabled in your instance. That would have deleted the vulnerable items.

 

SN Docs Link: https://docs.servicenow.com/bundle/washingtondc-security-management/page/product/vulnerability-respo... 

 

Regards,

Dhanraj.

 

0 Helpfuls

Maloy Banerjee1
Tera Expert
In response to dhanrajb

‎08-21-2024 03:53 AM

Hi @dhanrajb ,

 

Thank you for your response. 

 

The auto-flush and auto-delete rules are both disabled for the instance.

 

Regards,

Maloy Banerjee

0 Helpfuls

dev101
Tera Contributor
In response to Maloy Banerjee1

‎01-07-2025 11:12 AM

I am experiencing the same, did you get this resolved?

Thanks

0 Helpfuls

Eliz Skogquist
ServiceNow Employee
ServiceNow Employee

‎01-07-2025 12:02 PM

If you have an auto flush (auto delete) rule in place, you'll want to have 'cascade delete' checked, to eliminate all records referencing this record.  That would remove the detections for the VI.  Same would need to be set-up in archiving, where you also archive related records (detections and m2m records).  At this point, you'll want to remove those from the system

, as they are no longer of value. 

0 Helpfuls