A remediation task rule using vulnerability, product model, IP address, and assignment group

1. In the condition builder on a new record, set the condition as Vulnerability > is and enter a known vulnerability.

   Vulnerabilities are imported from the Nation Vulnerability Database (NVD) and Common Weakness Enumeration (CWE) integrations as described in Configure Application Vulnerability Response.

2. In the Group by section, select Application Vulnerable item for the Group application vulnerable items from field.
3. In the Using field, select Assignment group.

   Use Assignment rules to automatically set the Assignment group field for use in your remediation task rule. You can use a rule provided with the application or set up your own assignment rules. See Assign application vulnerable items in Application Vulnerability Response automatically for more information.

4. Select another condition, for example, Application Vulnerable item configuration item in the Group application vulnerable item from field, and IP address or product model in the Using field.
5. In the Assignment section, for Assign remediation task field by field, select Group by field.
6. In the Group by field, select Assignment group.

   As described in this section, this selection assigns vulnerable items to various groups based on the conditions you set in the group by section. Although the AVIs share the vulnerability, they're assigned to different groups based on the CI product model or by IP address.

7. Select Submit to save your rule.