Contents x
    Vulnerability Compensation
    • 30 Oct 2024
    • 2 Minutes to read
    • Print
    • Dark
      Light
    • PDF
    Contents

    Vulnerability Compensation

    • Updated on 30 Oct 2024
    • 2 Minutes to read
    • Print
    • Dark
      Light
    • PDF
    Article summary

    About this Article
    This article provides information related to the Vulnerability Compensation widgets


     
    Version 3.1.1 and Above:


    Vulnerability Compensation consists of two widgets - Vulnerability Compensated and Vulnerability Compensation Trend to provide the detected vulnerabilities related to Host protection on all the Workloads/Probes discovered in the topology. Once the vulnerability scan results are uploaded, the widgets are populated with live data.

    1. Navigate to TrustSight > Vulnerability in the CMS left navigation pane
    2. At runtime, select the required node element on the widget and click Submit
    3. A few of the options available for each widget are described below:
      1. Filter, Drilldown, Show Underlying Data options are available for each segment in the statistics
      2. Download - The displayed statistics can be downloaded in different formats - PNG, XLSX, CSV


    Vulnerability Compensated

    Virsec provides focus on Critical and High vulnerabilities and a high percent of them can be compensated by using our unique protection features. This helps mitigating the need to patch these vulnerabilities immediately and gives the customer a reasonable amount of time to analyse and incorporate changes.

    1. The Vulnerability Compensated widget provides the statistics of the detected Critical and High vulnerabilities related to Host protection against those that can be compensated by Virsec's TrustGuardian (VSP). Utilizing VSP, these vulnerabilities can be compensated without making any other changes to the workload
    2. The statistics of low and medium severity Vulnerabilities can be obtained using Explore and Filter option
    3. Standard actions for each widget are available

    Vulnerability_Widgets


    Vulnerability Compensation Trend

    Vulnerability Compensation trend provides a visibility to the customer on how the Vulnerability is continuously compensated by using Virsec protection over a period of time.

    1. The Vulnerability Compensation Trend widget provides the detected vulnerability trend of Critical and High severity vulnerabilities related to Host protection for a specific interval of time
    2. The statistics of low and medium severity Vulnerabilities can be obtained using Explore and Filter option
    3. Standard actions for each widget are available

    Vulnerability_Widgets2


    Upload Vulnerability Scan

    Virsec compensates vulnerabilities by accessing the source vulnerability data from Vulnerability Scan tool (Tenable). To upload the scan results, follow the below steps:

    1. Navigate to TrustSight > Integrations > Vulnerabilities
    2. Drag and drop OR Choose the .csv report. Ensure that the report has:
      1. Three mandatory columns - CVE, IP Address, DNS Name
      2. Size less than 10MB
    3. This report is utilized to populate Vulnerability Protection and Trend widgetsTenableReportUpload
    Version 3.1.0:


    Vulnerability Compensation consists of two widgets - Vulnerability Classification and Vulnerability Trend to provide the detected vulnerabilities on all the Workloads/Probes discovered in the topology. Once the vulnerability scan results are uploaded, the widgets are populated with live data.

    1. Navigate to TrustSight > Vulnerability in the CMS left navigation pane
    2. At runtime, select the required node element on the widget and click Submit
    3. A few of the options available for each widget are described below:
      1. Filter, Drilldown, Show Underlying Data options are available for each segment in the statistics
      2. Download - The displayed statistics can be downloaded in different formats - PNG, XLSX, CSV


    Vulnerability Classification

    1. The Vulnerability Classification widget provides the statistics of the detected vulnerability against those that can be compensated by Virsec's TrustGuardian (VSP). Utilizing VSP, Critical and High Vulnerabilities can be compensated without making any other changes to the workload
    2. Standard actions for each widget are available

    Vulnerability_Widgets


    Vulnerability Trend

    1. The Vulnerability Trend widget provides the detected vulnerability trend for a specific interval of time
    2. Standard actions for each widget are available

    Vulnerability_Widgets2


    Upload Vulnerability Scan

    Virsec compensates vulnerabilities by accessing the source vulnerability data from Vulnerability Scan tool (Tenable). To upload Vulnerability Scan (Tenable), follow the below steps:

    1. Navigate to TrustSight > Integrations > Vulnerabilities
    2. Drag and drop OR Choose the .csv report. Ensure that the report has:
      1. Three mandatory columns - CVE, IP Address, DNS Name
      2. Size less than 10MB
    3. This report is utilized to populate Vulnerability Protection and Trend widgetsTenableReportUpload
    Was this article helpful?
    What's Next