Template for manual ingestion of vulnerabilities
The template provides columns that must be filled with vulnerability and configuration item (CI) data. After the template is populated and uploaded, the data is processed.
Instructions for populating the template
To enter the details in the template, follow the instructions provided in the following
table.
| Column | Required/Optional? | String length (max)/ Valid values | Description |
|---|---|---|---|
| Asset ID | Optional | 255 | Universally unique identifier (UUID) or Asset ID. It can be the value generated by a scanner. |
| Enter information in at least one of the following five columns: | |||
| MAC Address | Required | 24 | Host or asset information. The combination of all values provided must be unique for an asset. |
| FQDN | Required | 255 | |
| NETBIOS | Required | 255 | |
| IP Address | Required | 255 | |
| Hostname | Required | 255 | |
| The remaining columns don't depend on each other. | |||
| Vulnerability ID | Required | 255 | Represents a vulnerability in the National Vulnerability Database (NVD) or an ID returned from a third-party scanner. |
| Vulnerability Summary | Optional | 512 | Brief description of the vulnerability. It is added to the database only when the Vulnerability ID is unavailable. |
| Severity | Optional | critical, high, medium, low, none | Severity of the vulnerability. It is added to the database only when the Vulnerability ID is unavailable. If the record is empty, then by default it is considered as critical. |
| Port | Optional | Not applicable | Port from which the vulnerability is detected. The value must be a valid integer. If there is an invalid input, the record is skipped. |
| Protocol | Optional | 40 | Type of network protocol used. |
| Proof | Optional | 4000 | Represents the location or system path of the vulnerability. |
| State | Optional | open, fixed | Status of the detection. If the record is empty, then by default it is considered open. |