Creating a Custom Field in Kenna.VM

Within Kenna, there are a number of fields that are presented by default on the vulnerability level including Risk Score, CVSS2.0 score, CVE number, Fix preview, asset impacted, last seen, found, status, etc. However if there is a field that you’d like to have on the vulnerability level that is not present by default you can create a custom field. Custom fields allow you to apply additional metadata to vulnerabilities.

Types of Custom Fields:

  • Text Fields

    • Text fields support up to 2000 characters of text. This can be used for additional notes, marking an Owner of a vulnerability, or any other text based data.

  • Date Fields

    • Date fields support a calendar date. When editing a date based custom field, a calendar popup will appear when you edit the field. You can also manually input a date in MM/DD/YYYY format. This type of custom field can be used to mark the date a vulnerability was Risk Accepted, a date to review the vulnerability status (Risk Acceptance or False Positive review/re-validation).

  • Numeric Fields

    • Numeric fields support any number. This number can include decimals.

Creating a Custom Field:

  1. Navigate to the gear in the upper right hand side of your browser when logged in and from the dropdown menu, select Custom Fields.


  2. From the Custom Fields page, click + New Custom Field.

  3. Complete the fields shown to include: naming the field, adding a description, selecting the type of field (Text, Date or Numeric), and filtering vulnerabilities on this field in the Explore view. If you’d like to filter on this field in Explore, simply click the checkbox for Faceted Search.
    Note: For each unique entry in a custom field creates a new checkbox in Explore. For example, if you have four unique dates/numbers/text strings, it will create four checkboxes.
  4. After you define your desired custom fields, they are automatically available for all vulnerabilities. You can now add add data to these custom fields, individually, or in bulk if the entry you are adding is the same across a group of vulnerabilities.
    To add data in bulk:
    • Select all vulnerabilities to which you would like to add data and click Edit.
    • Select the custom field you wish to edit and input the information. This is applied to all selected vulnerabilities.


      To add data to a single vulnerability there are two options:
      • Select the vulnerability and click Edit.

      • Click the blue arrow (vulnerability details) on the right hand side of a vulnerability, and then edit custom fields on the right hand side of the screen.


Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request



Please sign in to leave a comment.