Identify and escalate security issues in vulnerable software With Vulnerability Response, view software vulnerabilities returned from NIST National Vulnerability Database (NVD) entries. Then use this information to match the software entries to a Software Asset Management discovery model. Before you begin Role required: sn_vul.vulnerability_write Procedure Navigate to Vulnerability > Libraries > Vulnerable Software. A list of vulnerable software downloaded from the NVD is shown. Click a software record to view vulnerability information. Click the following related lists to get more information for identifying vulnerabilities. Related listDescription Vulnerable Items Lists any vulnerable items, which consist of pairings of potentially vulnerable CIs and software. To get more information about a pairing, click the information icon ().Note: If software is removed, any associated vulnerable items are closed and removed from the Vulnerable Items related list. Vulnerability Entries Lists vulnerability entries for the selected software record. Click a record to view its details. Use discovery models to match software with vulnerabilitiesA discovery model is a software model associated with a customer software installation. If your instance uses Software Asset Management or Discovery to search for vulnerable software, you can use discovery models in Vulnerability Response to match software with vulnerable items.