Severity mapping for Unified Security Exposure Management

Rversion finale: Australia

Mis à jour 12 mars 2026

1 minute de lecture

Severity mapping is a critical feature that enables organizations to standardize and normalize the severity levels of findings detected across different sources. This process involves mapping the severity levels from various scanners and sources to a common severity scale used within Unified Security Exposure Management.

Severity Mapping

Remarque :

Business rules run in the background to evaluate the priority for Qualys data and perform the corresponding mapping to the Priority field. Therefore, the business rule is responsible for handling the mapping of Qualys data.


Field	Description
Normalised_Severity	Calculates the severity values received from the scanner.
Source_severity	Data from the severity_score table is mapped to the source_severity table during the execution of the Rapid7 Vulnerability Integration- API. Data from the SEVERITY_LEVEL is mapped to the source_severity table during the execution of the Qualys Knowledge Base Integration. Data for risk_factor table is mapped to source_severity during the execution of the Tenable.io Plugin Integration. Data for riskFactor table is mapped to source_severity during the execution of the Tenable.io Plugin Integration. Data from severity table is mapped to source_severity during the execution of the Microsoft TVM Vulnerability(CVE) Integration. .