Re-evaluate the remediation properties of the records in the Vulnerability Manager Workspace

  • Release version: Xanadu
  • Updated August 1, 2024
  • 1 minute to read

    • Evaluate the assignments, remediation target date, remediation tasks, exceptions, and risk score for a set of records (VITs, AVITs, CVITs or TRs) in the Vulnerability Manager Workspace.

    Before you begin

    Role required:
    • sn_vul.vulnerability_analyst, or sn_vul.vulnerability_admin for host vulnerable items (VITs)
    • sn_vul.app_sec_manager for application vulnerable items (AVITs)
    • sn_vul_container.vulnerability_analyst or sn_vul_container.vulnerability_admin for container vulnerable items (CVITs)
    • sn_vulc.admin for configuration test results (TRs)

    About this task

    Prior to version 23.0 of Vulnerability Response, it was necessary to apply the rules to all records to obtain the latest assignments, remediation target dates, risk scores, and remediation tasks, which was a time-consuming process. Starting with version 23.0, you can selectively evaluate and update these properties for specific records, thereby reducing processing time. Additionally, you can refine the remediation process based on these updated properties. Starting with v24.0.6 of Vulnerability Response, you can evaluate the exception rules for selected records in the Vulnerability Manager Workspace.

    Procedure

    1. Navigate to Workspaces > Vulnerability Manager Workspace.
    2. On the List page, open the Active or All list in one of the following lists:
      • Host Vulnerable Items
      • Application Vulnerable Items
      • Container Vulnerable Items
      • Configuration Test Results
    3. Optional: Select the check box of the desired records to updated only the selected records by selecting the Selected items option in the modal.
    4. Select the Re-evaluate button.
    5. In the Re-evaluate and update remediation properties modal, select the properties that you want to update for the selected records.
      FieldDescription
      Record selection
      • Selected items: Updates the selected records only.
      • All items: Updates all the records in the list.
      Assignments Updates the assignments in the Assignment Group field according to the latest Assignment Rules.
      Risk score Updates the risk score in the Risk score field as per the latest Risk Score Rules.
      Remediation tasks Updates the remediation tasks according to the latest Remediation task rules.
      Exceptions Updates the deferral status of the records according to the latest Exception rules.

      For more information on how the deferral status of the records is updated, see Re-evaluating the exceptions for selected records in the Vulnerability Manager Workspace.
      Remediation target date Updates the Remediation target date according to the latest Remediation Target Rules.
      Note:
      When you select a property, its dependent properties are selected automatically.
    6. Select Apply.

    Result

    The properties are updated for the selected records. You can check the Work notes of the records for the previous and latest values of the updated remediation properties.