Vulnerability Management
The vulnerability module correlates known CVEs with assets using vendor, model, firmware, and configured external feeds (NVD, CISA KEV, and others when enabled).
Module availability
Section titled “Module availability”Requires module.vulnerabilities. Tenant administrators configure scanners and feeds under Vulnerabilities → Configuration (/vulnerabilities/configuration).
Main views
Section titled “Main views”| Route | Purpose |
|---|---|
/vulnerabilities | CVE list with severity and remediation status |
/vulnerabilities/by-asset | Risk grouped per asset |
/vulnerabilities/:id | CVE detail, affected assets, notes |
/vulnerabilities/configuration | Feed sync, scanner settings |
Workflow
Section titled “Workflow”- Ensure assets have accurate vendor, model, and firmware/OS for CPE matching.
- Run or schedule vulnerability scans / feed sync (see CVE Management).
- Triage findings: assign owners, set remediation status, link to changes or incidents when fixing.
Permissions
Section titled “Permissions”vulnerabilities.read— view findingsvulnerabilities.update— change remediation status and assignmentsvulnerabilities.create/delete— administrative operations where exposed