Vulnerability Compensation
  • 26 Dec 2024
  • 3 Minutes to read
  • Dark
    Light
  • PDF

Vulnerability Compensation

  • Dark
    Light
  • PDF

Article summary

About this Article
This article provides information related to the Vulnerability Compensation widgets


 
Version 3.1.1 and Above:


Vulnerability Compensation consists of two widgets - Vulnerability Compensated and Vulnerability Compensation Trend to provide the detected vulnerabilities related to Host protection on all the Workloads/Probes discovered in the topology. Once the vulnerability scan results are uploaded, the widgets are populated with live data.

  1. Navigate to TrustSight > Vulnerability in the CMS left navigation pane
  2. At runtime, select the required node element on the widget and click Submit
  3. A few of the options available for each widget are described below:
    1. Filter, Drilldown, Show Underlying Data options are available for each segment in the statistics
    2. Download - The displayed statistics can be downloaded in different formats - PNG, XLSX, CSV


Vulnerability Compensated

Virsec provides focus on Critical and High vulnerabilities and a high percent of them can be compensated by using our unique protection features. This helps mitigating the need to patch these vulnerabilities immediately and gives the customer a reasonable amount of time to analyse and incorporate changes.

  1. The Vulnerability Compensated widget provides the statistics of the detected Critical and High vulnerabilities related to Host protection against those that can be compensated by Virsec's TrustGuardian (VSP). Utilizing VSP, these vulnerabilities can be compensated without making any other changes to the workload
  2. The statistics of low and medium severity Vulnerabilities can be obtained using Explore and Filter option
  3. Standard actions for each widget are available

Vulnerability_Widgets


Vulnerability Compensation Trend

Vulnerability Compensation trend provides a visibility to the customer on how the Vulnerability is continuously compensated by using Virsec protection over a period of time.

  1. The Vulnerability Compensation Trend widget provides the detected vulnerability trend of Critical and High severity vulnerabilities related to Host protection for a specific interval of time
  2. The statistics of low and medium severity Vulnerabilities can be obtained using Explore and Filter option
  3. Standard actions for each widget are available

Vulnerability_Widgets2


Upload Vulnerability Scan

Virsec compensates vulnerabilities by accessing the source vulnerability data from Vulnerability Scan tool (Tenable). To upload the scan results, follow the below steps:

  1. Navigate to TrustSight > Integrations > Vulnerabilities
  2. Drag and drop OR Choose the .csv report. Ensure that the report has:
    1. Three mandatory columns - CVE, IP Address, DNS Name
    2. Size less than 10MB
  3. This report is utilized to populate Vulnerability Protection and Trend widgetsTenableReportUpload
Version 3.1.0:


Vulnerability Compensation consists of two widgets - Vulnerability Classification and Vulnerability Trend to provide the detected vulnerabilities on all the Workloads/Probes discovered in the topology. Once the vulnerability scan results are uploaded, the widgets are populated with live data.

  1. Navigate to TrustSight > Vulnerability in the CMS left navigation pane
  2. At runtime, select the required node element on the widget and click Submit
  3. A few of the options available for each widget are described below:
    1. Filter, Drilldown, Show Underlying Data options are available for each segment in the statistics
    2. Download - The displayed statistics can be downloaded in different formats - PNG, XLSX, CSV


Vulnerability Classification

  1. The Vulnerability Classification widget provides the statistics of the detected vulnerability against those that can be compensated by Virsec's TrustGuardian (VSP). Utilizing VSP, Critical and High Vulnerabilities can be compensated without making any other changes to the workload
  2. Standard actions for each widget are available

Vulnerability_Widgets


Vulnerability Trend

  1. The Vulnerability Trend widget provides the detected vulnerability trend for a specific interval of time
  2. Standard actions for each widget are available

Vulnerability_Widgets2


Upload Vulnerability Scan

Virsec compensates vulnerabilities by accessing the source vulnerability data from Vulnerability Scan tool (Tenable). To upload Vulnerability Scan (Tenable), follow the below steps:

  1. Navigate to TrustSight > Integrations > Vulnerabilities
  2. Drag and drop OR Choose the .csv report. Ensure that the report has:
    1. Three mandatory columns - CVE, IP Address, DNS Name
    2. Size less than 10MB
  3. This report is utilized to populate Vulnerability Protection and Trend widgetsTenableReportUpload

Was this article helpful?