Vulnerability Statuses

The status of a vulnerability can be modified to help your team prioritize the vulnerabilities that matter and to track the lifecycle of your vulnerabtilities. The Kenna platform offers four vulnerabiltiy statuses:

Open: The vulnerability is still a risk in your organizational data and is available in the Kenna platform for remediation. This is the default status for vulnerabilities.

Closed: The vulnerability has been remediated by your team. Once closed, it is removed from the Open vulnerability view. 

Risk Accepted: The vulnerability is irrelevant - it exists in your organizational data but you are not prioritizing it for remediation, and are okay with living with that risk. A good example of a Risk Accepted vulnerability is an Internet Explorer vulnerability on a server in a data center that no one ever interacts with.

False Positive: The vulnerability identified in your scan file is not actually a vulnerability.

To modify a vulnerability's status, navigate to the Home tab, select a vulnerability from the list, and then select a status within the Set Status dropdown.

You will see the risk status that you’ve assigned to the vulnerability when you drill into the vulnerability details via the table. You can also flag many vulnerability at once as either risk accepted or false positive right in the Vulnerability Table (or all at once using the Display dropdown). Once selected, just assign the new status using the dropdown.

Flagging a vulnerability as risk accepted or as a false positive will not affect the risk meter score, as only open vulnerabilities contribute to a risk meter score.

You can add additional information to your vulnerability statuses (such as justification of the decision or a date to reevaluate) by creating a custom field for each. More information on using custom fields can be found here.

 

 

 

Powered by Zendesk