Vulnerability Compensation

Vulnerability Compensation consists of two widgets - Vulnerability Classification and Trend to provide the detected vulnerabilities on all the Workloads/Probes discovered in the topology. Once the vulnerability scan results are uploaded, the widgets are populated with live data.

1. Navigate to Trust Sight > Vulnerability in the CMS left navigation pane
2. At runtime, select the required node element on the widget and click Submit
3. A few of the options available for each widget are described below:
   1. Filter, Drilldown, Show Underlying Data options are available for each segment in the statistics
   2. Edit - Edit the available widget to add/remove any available parameters
   3. Download - The displayed statistics can be downloaded in different formats - PNG, XLSX, CSV

Vulnerability Classification

1. The Vulnerability Classification widget provides the statistics of the detected vulnerability against those that can be compensated by Virsec's Trust Guardian (VSP). Utilizing VSP, Critical and High Vulnerabilities can be compensates without making any other changes to the workload
2. Standard actions for each widget are available

Vulnerability Trend

1. The Vulnerability Trend widget provides the detected vulnerability trend for a specific interval of time
2. Standard actions for each widget are available

Upload Vulnerability Scan

To upload Vulnerability Scan (Tenable), follow the below steps:

1. Navigate to Trust Sight > Integrations > Vulnerabilities
2. Drag and drop OR Choose the .csv report. Ensure that the report has:
   1. Three mandatory columns - CVE, IP Address, DNS Name
   2. Size less than 10MB
3. This report is utilized to populate Vulnerability Protection and Trend widgets