Thank you for your feedback.
Form temporarily unavailable. Please try again or contact docfeedback@servicenow.com to submit your comments.
Versions
  • London
  • Kingston
  • Jakarta
  • Istanbul
  • Helsinki
  • Geneva
  • Store
Close

Defer a vulnerability group

Defer a vulnerability group

If you determine that the issue associated with a vulnerability group is a low priority and can be immediately deferred without further analysis, you can use the Defer feature.

Before you begin

Role required: sn_vuln.admin

About this task

A scheduled job runs every day checking for deferred vulnerability groups that have reached their reopen date. On the day, the group is reopened.

Procedure

  1. Navigate to Vulnerability > Vulnerabilities > Vulnerability Groups.
  2. Open a vulnerability group.
  3. Click the Close/Defer button.
  4. Fill in the fields on the form, as appropriate.
    Field Description
    Reason Enter the reason for deferring the issue.
    Re-open on

    Select the date when the Deferred state expires and the vulnerability group is reactivated.

    After the record is submitted, if email notifications are defined, members of the Vulnerability Response group receive an email when the expiration date is within one week. When the defer date expires, the vulnerable item is set back to Open and a second email notification is sent out.

  5. Click Submit.
    The group is marked Deferred. A Reopen button appears in the header. The reopen date and reason appear in work notes under the Defer/Closed tab.