Vulnerability Response correlation Vulnerability Response data correlation is performed using groups, calculators, and libraries. You can do the following: Create vulnerability groups to contain vulnerable items from NVD, CWE, and third-party integrations. Assign prioritization, rules, and access. Create vulnerability group rules based on vulnerabilities, filters, filter conditions, and group keys. Use calculator groups to determine business impact, specify varying conditions using filters, apply simple calculations or use a script. View ungrouped vulnerable items View vulnerabilities Create vulnerability group rulesYou can create rules to automatically group vulnerable items based on filter conditions.Create a Vulnerability Response group Creating a vulnerability group manually is done when you want to group vulnerable items by something other than by the Vulnerability Group Rules criteria. For example, you can create groups for a particular single manager, or for active, new exploits, such as ransomware, that include different vulnerabilities. Add users to the Vulnerability Response groupWhen the Request Review feature is used to ignore or close a vulnerable item without requiring a scan, the Vulnerability Response group is notified to approve or reject the request. You can assign the appropriate users. Create a vulnerability calculator groupThe Vulnerability Response base system includes two vulnerability calculator groups: Vulnerability and Risk Score. As you create other calculators, you can add them to this group or create other groups and calculators. Within each group, the first calculator that matches the vulnerable item is run.Create a vulnerability calculatorA vulnerability calculator is a pre-defined formula to calculate the severity of security incidents when certain criteria are met. Individual vulnerable item managementVulnerable items represent one CI with a given vulnerability. Vulnerable items are imported from third-party sources, or using the SAM NVD information (link) to compare vulnerability entries to software records retrieved from the Software Asset Management module.