Direct Deferral of Vulnerable Items (VITs) by Exception Rules Without Remediation Task Creation

Australia Security Management

Release

australia

ft:locale

ko-KR

ft:publication_title

Australia Security Management

ft:clusterId

security

bundleId

security

workflow

Technology

Direct Deferral of Vulnerable Items (VITs) by Exception Rules Without Remediation Task Creation

릴리스 버전: Australia

업데이트 날짜 2026년 03월 12일

소요 시간: 3분

Exception rules are applied directly to the Vulnerable Items (VIT) eliminating the process of creating a remediation task. Auto- Exception Rule column is added to the form view, which populates the current exception rule applied on the Vulnerable Item (VIT)

Approval of Exception Rule/Reapply:

An exception rule is created for a particular Vulnerable Item (VIT), which is in an open, under investigation, awaiting implementation state initially. Once the rule is approved, it is processed by a daily, nightly scheduled job that reapplies the exception rule.

When the scheduled job runs, in case the VIT gets deferred (postponed) due to the incorrect mapping of VIT to the exception rule, the scheduled job reopens the VIT to reapply a new exception rule.

A new rule with a later execution order can also be activated to replace the previous one.

주:

The Deferred until date is set to 12 months by default and you can edit is as necessary from the Exception Management configuration settings page. If you try to select a deferred date beyond the default date, the system throws an error.

Handling canceled or Deleted Exception Rules:

If the old exception rule is canceled or deleted, it triggers a background job to:

Open all associated VITs.
Move Exception rule into the draft state when the rule is canceled.
Apply a new exception rule to the VITs. (If there’s an applicable exception rule then the VIT will be associated with it and the VIT status will be deferred).

New VIT Creation (Insertion):

When a new VIT is created (such as an ingestion), it is automatically assigned the exception rule. The new VIT will also get deferred with the same reasoning and until date, following the same process as when an exception rule is canceled.

A click-able link is available in the VM Manager Workspace to access the exception rule directly, allowing the user to see which exception rule is affecting a given VIT.