Business rules installed with Vulnerability Response

Vulnerability Response adds the following business rules.
Business rule Table Description
Add Vulnerable Item CI to Task Vulnerability Item Task

[sn_vul_m2m_item_task]

Copies the configuration items from the vulnerable item to the task.
Apply Updates label

[sn_vul_group_async_update]

Applies updates to vulnerability items when a change is made to a group.
Associate VIs on Condition Change Vulnerability Group

[sn_vul_vulnerability]

Creates the association between vulnerable items.
Begin state approval workflow Vulnerable Item

[sn_vul_vulnerable_item]

Starts the approval process for a vulnerable item.
Calculate Criticality Vulnerable Item

[sn_vul_vulnerable_item]

Vulnerability Group

[sn_vul_vulnerability]

Runs the vulnerability calculators when a vulnerable item is inserted or when the configuration item changes.
Check for reopen or close Vulnerable Item

[sn_vul_vulnerable_item]

Determines whether a vulnerable item has been reopened or closed.
Check ignore expiration Vulnerable Item

[sn_vul_vulnerable_item]

Checks if the time limit to ignore a vulnerable item has expired.
Clear Filter if using Vul Entry Vulnerability Group

[sn_vul_vulnerability]

If using a vulnerability entry to determine the associated vulnerable items, this rule clears the conditions filter.
Clear others when using Filter Group

Vulnerability Group

[sn_vul_vulnerability]

Clears out invalid fields on a vulnerability group when a filter group is used.
Clear Vulnerability if Custom Filter Vulnerability Group

[sn_vul_vulnerability]

If using a filter to determine the associated vulnerable items, this rule clears the vulnerability field.
Create CI Scan Hardware

[cmdb_ci_hardware]

Creates a CI scan record when a new CI is created/inserted in the Hardware [cmdb_ci_hardware] table.
Determine CI from Network Details Vulnerable Item

[sn_vul_vulnerable_item]

Attempts to set the configuration item on the record given network details such as IP address.
Determine vulnerable items Vulnerable Software

[sn_vul_software]

Examines the software installation table and inserts a vulnerable item for each configuration item found to have an instance of the vulnerable software.
Ensure Vuln Centric Group exists Vulnerability Group

[sn_vul_vulnerable_item]

Checks for the existence of a vulnerability-centric group. If one is not found, it creates one.

Only applies if sn_vul.autocreate_vul_centric_group is set to true.

Handle complete state Vulnerability Integration Run

[sn_vul_integration_run]

When a vulnerability integration run completes, this rule starts the next available integration run (if any).
Handle ready state Vulnerability Integration Run

[sn_vul_integration_run]

If no other runs are processing when a vulnerability integration run is marked as ready, this property starts the integration run for that item.
Insert vulnerable item Software Installation

[cmdb_sam_sw_install]

If the software installation has a discovery model that matches a software model with a known vulnerability, a vulnerable item is inserted for the configuration item.
Link to Vulnerability Groups Vulnerability Group

[sn_vul_vulnerable_item]

Associates vulnerable items to vulnerability groups.
New CVEs downloaded NVD Data Feeds

[sn_vul_nvd_repo]

When new CVEs have been downloaded, this property publishes an event to the event queue to indicate CVEs have been added to the system. Used by notifications.
New items follow parent Vulnerable Item

[sn_vul_vulnerable_item]

Checks to see if the state of a new vulnerable item matches its vulnerability group. If so, this rule updates the state accordingly.
Normalize default Vulnerability Scanner

[sn_vul_scanner]

Ensures that only one scanner is marked as default at a given time, and allows only active scanners to be made the default.
Populate job script from integration Vulnerability Integration

[sn_vul_integration]

Updates the script that runs when the chosen processors change.
Prevent Delete/Deactivate of Default Vulnerability Scanner

[sn_vul_scanner]

Prevents the default scanner from being deactivated or deleted.
Process activation Vulnerable Item

[sn_vul_vulnerable_item]

Sets the Last opened field to the current date of activation and, if needed, sets the Reopened flag.
Process inactivation Vulnerable Item

[sn_vul_vulnerable_item]

Sets the Age closed and, if set, removes the Reopened flag.
Process Vulnerability Attachments Vulnerability Data Source Import Queue Entry

[sn_vul_ds_import_q_entry]

Processes the attachment queue.
Queue the scan Vulnerability Scan

[sn_vul_scan]

Places a vulnerability scan in the queue when all required fields have been provided.
Refresh impacted services on CI change Vulnerable Item

[sn_vul_vulnerable_item]

Refreshes impacted services when a configuration item changes on a vulnerable item.
Run process on insert Vulnerability Integration Process

[sn_vul_integration_process]

When an integration process is inserted, this property runs the integration script and processor based on any parameters configured on the record.
Set Risk Accepted Flag Vulnerability Group Item

[sn_vul_m2m_vul_group_item]

If a new vulnerable item is added to a vulnerability group that is in a Closed or Ignored state, this business rule sets the vulnerability group Risk accepted flag to true.
Trigger Workflows Vulnerability Group

[sn_vul_vulnerability]

Vulnerability Scan

[sn_vul_scan]

Vulnerable Item

[sn_vul_vulnerable_item]

Triggers Threat Intelligence workflows when conditions are met.
Update associated VI on Note Change Vulnerability Group

[sn_vul_vulnerability]

When a worknote is added to a vulnerability group, this rule propagates that note to associated vulnerable items.
Update integration process Vulnerability Data Source Import Queue Entry

[sn_vul_ds_import_q_entry]

Vulnerability Integration Run

[sn_vul_integration_run]

Updates the state of a vulnerability process and run, based on the result of a vulnerability data source import queue entry.
Update items on state changes Vulnerability Group

[sn_vul_vulnerability]

Updates associated vulnerable items when the state of a vulnerability group changes.
Update Match information Vulnerable Software

[sn_vul_software]

Updates the auto-match fields when the discovery model is set manually.
Update short description Vulnerable Item

[sn_vul_vulnerable_item]

Generates a short description from the vulnerability selected.
Update source task Scan

[sn_vul_scan]

When a vulnerability scan state changes, updates the task in the Source reference field with work notes to indicate if the scan was successfully launched.
Update the queue Scan

[sn_ti_scan]

Update a scan queue entry for a scan record when the scan state changes.
Update Vulnerabilities Vulnerability State Change Approval

[sn_vul_change_approval]

Updates the affected vulnerable items with the results of the vulnerability state change approval.
Update vulnerable item on delete Software Installation

[cmdb_sam_sw_install]

Updates a vulnerability item when the associated software installation is deleted.
Update vulnerable items Software Installation

[cmdb_sam_sw_install]

If a vulnerable item exists for an installation, the vulnerable item is updated with newly discovered information.
Vulnerability scan Security Scan Request

[sn_si_scan_request]

Starts a vulnerability scan from a security scan request.