Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 3 Next »

Content body.


Company Problems - Table of Contents


Company Problems - Overview

As part of the v4 release, we have designed a new screen that provides a fresh view of what we call 'Problem Groups.' With this new screen, the system will automatically classify your vulnerabilities into logical groups, making it easier for you to remediate them. It will also help you generate accurate reports catering to your specific needs.

image-20240104-161542.png

Company Problems - Details

Problem Details include the following data fields: Problem Name, Description, Assets, Score, and Severity. These details will update based on the Problem Group Name selected.

Field Label

Description / General Use

Problem Name

Displays the detected vulnerabilities CVE-ID

Description

Provides a description of the CVE-ID (Problem Name)

Assets

Displays the count of Assets with the CVE-ID (Problem Name)

Score

Displays the Base, EPSS, Exploitability, and Impact Scores.

Severity

Displays the Severity of the CVE-ID (Problem Name)

image-20240104-162310.png

Global Problem Group Name - Glossary of Terms

The system automatically classifies discovered vulnerabilities into the specific Problem Group Names in the table below.

Problem Group Name

Description / Use Case

0.85 > EPSS >= 0.90

Vulnerabilities grouped by EPSS Scoring >=85/90%

0.90 > EPSS >= 0.85

Vulnerabilities grouped by EPSS Scoring >=90/95%

0.95 > EPSS >= 0.90

Vulnerabilities grouped by EPSS Scoring >=90/95%

Antivirus Not Installed

 

Backup Not Performed

 

CISA Notified Vulnerabilities

Vulnerabilities grouped by CISA classification; source CISA.GOV

Critical Vulnerabilities

Vulnerabilities grouped by severity of Critical

Database Vulnerabilities

 

EPSS >= 0.95

Vulnerabilities grouped by EPSS Scoring >=95%

Firewall Misconfiguration

 

High Severity Vulnerabilities

Vulnerabilities grouped by severity of High

Information Disclosure

 

Informational

 

Low Severity Vulnerabilities

Vulnerabilities grouped by severity of Low

Mail Vulnerabilities

 

Medium Severity Vulnerabilities

Vulnerabilities grouped by severity of Medium

Operating System out of Support

 

Remote Access Vulnerabilities

 

Remote Login Vulnerabilities

 

Running Services

 

SMB Vulnerabilities

 

SSL Certificate Info

 

SSL/TLS Vulnerabilities

 

Web Server Fingerprint

 



Company Problems - Side Navigation Toolbar Overview

image-20240104-163412.png

  1. Problems Suppress - tap to suppress a problem; select at least one problem to use the suppression feature.

  2. Problems Suppressed Records - tap to view any problems previously suppressed.

  3. Jobs - tap to view any scan jobs and their current status.

  4. Alerts - tap to view System Events, time-line style.

  5. Dashboard - tap to be redirected to our external dashboard builder.



Company Problems - Side Navigation Toolbar Actions

Problems Suppress

To suppress a problem, click the checkbox to select and then tap the Problems Suppress icon.

image-20240104-164156.png

You will be prompted to enter additional details before suppressing the problem.

image-20240104-164314.png

You can choose to either Self Approve or choose Other User

image-20240104-165311.png

Selecting the Self Approve options requires a Comment, Start Date, and End Date.

image-20240104-165622.png

When using the system provided by Other User, you will be prompted to choose a User Type. You can either select Internal User or External User.

If you choose Internal User, you will see a drop-down list from where you can select the specific Internal User who is supposed to receive the email notification for this impression.

On the other hand, if you choose External User, you will need to enter the email addresses separated by commas of those who will receive the approval email.


Problems Suppressed Records

Jobs

Alerts

Dashboard


  • No labels