Modify the severity for a CVE or TPE

  • Release version: Xanadu
  • Updated July 31, 2025
  • 1 minute to read

    • As a vulnerability manager or analyst, you can modify the severity level of Common Vulnerability Entry (CVE) or Third-party Entry (TPE) in the Security Exposure Management Workspace.

    Before you begin

    Role required:
    • sn_vul.vulnerability_analyst, sn_vul.vulnerability_admin, or sn_vul.remediation_owner for host vulnerable items (VITs)
    • sn_vul.app_sec_manager, sn_vul.app_security_champion for application vulnerable items (AVITs)
    • sn_vul_container.vulnerability_analyst, sn_vul_container.vulnerability_admin, or sn_vul_container.remediation_owner for container vulnerable items (CVITs)
    • sn_vulc.admin, sn_vulc.remediation_owner for configuration test results (CTRs)

    Procedure

    1. Navigate to Workspaces > Security Exposure Management > Lists > Libraries.
    2. Open the appropriate entry:
      • CVEs (NVD): To modify the severity of a CVE.
      • TPEs: To modify the severity of a TPE.
    3. Select Modify severity from the More Actions icon ellipsis_icon
    4. Select the new severity level from the drop-down.
    5. Provide a justification for your update.
    6. Select Submit.
      Note:
      • You can revert to the original source severity using the Reset Severity option from the More Actions menu. This option appears only after you modify the severity.
      • The Modified severity field appears only when you change the source severity. If you reset it to the original value, the field is removed.
      • The system will use the Modified severity for risk calculations starting from the next scheduled job onwards. If the severity is reset, the original source severity will be applied instead.