Idea ID: 2757433

Vulnerability Aging

Status : Waiting for Votes
Waiting for Votes
See status update history
over 1 year ago

We would like to see the ability to set a TTL or max age for vulnerability reports against a specific target, This way you can set the age of a vulnerability to be the scan interval for the asset.

 

The above suggestion would allow for vulnerabilities to be remediated and by the time of the next scan the vulnerability would have timed out allowing for rules using this data to not fire on vulnerabilities that no longer exist.

Tags:

  • Or improve the handling of information import using vulnerability scans. Only the signatures get added to an asset, the vulnerability has no description. Hence the vulnerability reports from ESM only contain the signature and no description. 

    Some vulnerability management would also be great. Maybe even the ability to remediate the vulnerability on an asset. Add the "owner" of the asset, so he can be notified on a critical vulnerability.