Container Vulnerability Response dashboard

릴리스 버전: Australia

업데이트 날짜 2026년 03월 12일

소요 시간: 10분

Analytics and Reporting Solutions contain prepackaged Performance Analytics and Reporting content for use with other ServiceNow AI Platform products. This Platform Analytics Solution permits you to track the volume, performance, and progress of vulnerabilities from initial analysis and detection to containment, or remediation. You can filter reports by assignment group, exploits, risk rating, or state.

Required ServiceNow AI Platform roles

ServiceNow AI Platform administrator (admin): Install and activate this Analytics and Reporting Solution and make any necessary changes to system properties.
Performance Analytics administrator (pa_admin): Review the indicators, breakdowns, widgets, and dashboards. Set up and start data collection. Share the dashboards with appropriate stakeholders.

Access the Container Vulnerability Response dashboard

To open the dashboard, navigate to All > Container Vulnerability Response > Overview.

중요사항:

Starting with version 2.2 of Container Vulnerability Response, this dashboard can also be viewed in the Next Experience UI. To view the dashboard in the new UI, navigate to Workspaces > Vulnerability Manager Workspace and select the Dashboards icon. Depending on your role, the default dashboard is displayed. To view other dashboards, select the drop-down next to the dashboard name. For more information, see Dashboards page in the Vulnerability Manager Workspace and Dashboards page in the IT Remediation Workspace.

주:

If you’re a new user, you can view the dashboards only from the workspaces.
If you are on Tokyo, you can view the dashboards in the Next Experience UI but with some functional loss.

Container Vulnerability Management tabs

This dashboard lets you see the vulnerabilities that are present in containers. You can view the vulnerabilities and their related data by region, age, services, and other breakdowns.

The Overview tab provides the overall status of Container Vulnerability Management in the system. Container Vulnerability Management - Overview tab

The Services tab shows Container vulnerable items impacting application services. Container Vulnerability Management - Services tab

The Service Owners tab shows Container vulnerable items impacting service owners. Container Vulnerability Management - Service Owners tab

Breakdowns

Exploit Exists
Exploit Attack Vector
Exploit Skill Level
Remediation Target Status
Risk Rating
State
Assignment Group

Data visualizations


Name	Type	Description
Container Vulnerabilities	Single score	Number of container vulnerabilities associated with one or more active container vulnerable items.
Vulnerable Items (VIs)	Single score	Number of active (non-closed) container vulnerable items.
Vulnerable Docker Images	Single score	Number of docker images associated with active container vulnerable items.
VI Mean Time To Remediate (MTTR)	Single score	The mean time to remediate (close) a vulnerable item, displayed as a 30-day running average.
Vulnerable Items Met Remediation Target	Single score	Percentage of closed container vulnerable items that have met their remediation target dates in the current and previous quarters. Remediation targets are calculated from the Last Opened date plus the number of days.
Vulnerable Items by Risk Rating	Bar	Number of active container vulnerable items grouped by risk rating over the selected time span.
Vulnerable Items by Age	Bar	Number of active container vulnerable items grouped by risk rating and age (in days). 주: Customizing the Age and Age closed calculation for container vulnerable items (CVIs) may lead to a sharp rise or drop in the Performance Analytics (PA) reports that include these metrics. For more information on how to customize the calculation of Age and Age closed for CVIs, see the KB1703270 KB article.
Critical Container Vulnerable Items	List and Line	Number of active container vulnerable items with a critical risk rating, grouped by service.
Overdue Critical Container Vulnerable Items	List and Line	Number of active container vulnerable items with a critical risk rating and past their remediation target dates, grouped by service.
High Container Vulnerable Items	List and Line	Number of active container vulnerable items with a high risk-rating, grouped by service.
Overdue High Container Vulnerable Items	List and Line	Number of active vulnerable items with a high risk-rating and past their remediation target dates, grouped by service.
Critical Container Vulnerable Items	List and Line	Number of active container vulnerable items with a critical risk rating, grouped by service owner.
Overdue Critical Container Vulnerable Items	List and Line	Number of active container vulnerable items with a critical risk rating and past their remediation target dates, grouped by service owner.
High Container Vulnerable Items	List and Line	Number of active container vulnerable items with a high risk-rating, grouped by service owner.
Overdue High Container Vulnerable Items	List and Line	Number of active vulnerable items with a high risk-rating and past their remediation target dates, grouped by service owner.