The ServiceNow® Container Vulnerability Response application brings security and IT together to enable you to remediate your most critical vulnerabilities more quickly and efficiently. Container Vulnerability Response was enhanced and updated in the Vancouver release.

Container Vulnerability Response highlights for the Vancouver release

  • Remediate Container Vulnerable Items (CVITs) in Vulnerability Manager Workspace.
  • View the Container Vulnerability Response and Prisma Cloud Compute (CVR) integration run status in Vulnerability Manager Workspace.

See Container Vulnerability Response for more information.

Important: Container Vulnerability Response is available in the ServiceNow Store. For details, see the "Activation information" section of these release notes.

New in the Vancouver release

Viewing the dashboards in Vulnerability Manager Workspace
Starting with v2.1 of Container Vulnerability Response, the Container Vulnerability Response and Prisma Cloud Compute integration run status dashboards are available in the Next Experience UI from Vulnerability Manager Workspace.
Configuring fields to receive information on common vulnerabilities and exposures (CVEs)
Starting from v2.1 of Container Vulnerability Response, when the Vulnerability Response Integration with Palo Alto Networks Prisma Cloud Compute is run, the fields Exploit exists and Remediation notes are populated with the details obtained from Prisma to provide information on the CVEs. In addition, you can configure the fields that must get updated during the execution.
Requesting an extension for a deferred container vulnerable item
Starting with version v2.2.3 of Container Vulnerability Response, you can request an extension for a deferred exception rule before the due date.
Extension of a deferred extension rule
Starting with version v2.2.3 of Container Vulnerability Response, you can request an extension for a deferred extension rule before the due date.
Extension of deferred remediation task
Starting with version v2.2.3 of Container Vulnerability Response, you can request an extension for a deferred remediation task before the due date.
Accessing only the container vulnerable items assigned to you and your group with the exception approver role
For the exception approver role, sn_vul_container.exception_approver, the granular role, sn_vul_container.read_all, has been removed so that you can access the container vulnerable items and remediation tasks assigned to you and your group only.
Adding the work notes for a deferred container vulnerable item
Starting from 2.3 of Container Vulnerability Response, you can add the relevant information in the Work Notes field for a deferred container vulnerable item also.
Quick start tests for Container Vulnerability Response

After upgrades and deployments of new applications or integrations, run quick start tests to verify that Container Vulnerability Response works as expected. If you customized Container Vulnerability Response, copy the quick start tests and configure them for your customizations.

Activation information

Install Container Vulnerability Response by requesting it from the ServiceNow Store. Visit the ServiceNow Store website to view all the available apps and for information about submitting requests to the store. For cumulative release notes information for all released apps, see the ServiceNow Store version history release notes.