Using the default Vulnerability Response dashboards

Release version:
Xanadu
Yokohama
Washington DC
Vancouver
UpdatedAug 1, 2024
6 minutes to read

Xanadu
Vulnerability Response

The Vulnerability Response overview dashboard (Vulnerability Management) provides an executive view into vulnerabilities and vulnerable items, helping the Vulnerability Admin pinpoint areas of concern quickly. The Vulnerability Response remediation dashboard (Vulnerability Remediation) allows a remediation specialist to focus on the remediation tasks and vulnerable items they own.

Data visualizations in the Vulnerability Response Workspaces

The Vulnerability Response Workspaces include data visualizations that can help you monitor your remediation progress. You can determine the threat level to your organization by viewing the number and severity of active vulnerabilities that are important to your organization on dynamic data visualizations that are updated as vulnerability data changes. See Vulnerability Response Workspaces, Vulnerability Manager Workspace and Exploring the IT Remediation Workspace for more information about the dynamic data visualizations that are available.

Vulnerability analysts can also use default Vulnerability Response dashboards.

Roles required: sn_vul.vulnerability_admin, sn_vul.vulnerability_analyst, and users with sn_vul.vulnerability_read (or who inherit the sn_vul.vulnerability_read role), and pa_viewer.

The default Vulnerability Response dashboards in the legacy environment

These reports are included as part of the Performance Analytics for Vulnerability Response application and do not require a separate subscription. To open one, select the choice list to expand it and choose a dashboard. Alternatively, enter the name of a dashboard in the search field.

Vulnerability Response dashboards drop-down menu

Note:

When the Performance Analytics Content Pack for Vulnerability Response application is installed and activated, the Vulnerability Management (PA) dashboard, is displayed automatically in the Overview module. This dashboard contains reports covering all stages of the vulnerability management life cycle.

For information on the reports included in the Performance Analytics Content Pack for Vulnerability Response, see Vulnerability Management [PA] dashboard.

For information about the CISO dashboard and Scan Coverage reports, see Vulnerability Management CISO dashboard.

Vulnerability Management dashboard

In each chart, you can point to any part of a chart (bar, pie, data point, and so on) to view general data specific to that part. If you click any part of a report, a list opens to provide detailed information.

Note:

If customized dashboards are needed, see Create and use dashboards for more information.

Search:

Table 1. Vulnerability Overview reports
Name	Visual	Description
Open Vulnerable Items by CI	Bar	Displays the number of open vulnerable items recorded for each configuration item (CI), from most to least.
Vulnerable Items by Remediation Target Status	Bar	Displays the number of Vulnerable Items that are Approaching Target, In-flight, and Past Target. Note: Items in the Deferred, Resolved, or Closed state are not included.
Deferred Vulnerable Items Expiring this Week	Graph	Displays the number of deferred vulnerable items scheduled to be reactivated within seven days.
Open Vulnerable Items by Vulnerability	Bar	Displays the number of open vulnerable items for each vulnerability, from most to least.
Vulnerabilities by Model	Bar	Displays the number of vulnerable items recorded for each model (CI class), from most to least.
Vulnerabilities by Week	Trend	Displays the number of vulnerability entries recorded each week.
Most Vulnerable Models	Donut	Displays models (CI classes) with the most vulnerable items.
Vulnerabilities by Publisher	Bar	Displays the number of vulnerable items recorded for each publisher, from most to least.
Vulnerabilities by Impact	Bar	Displays the number of vulnerability entries for impacted network types.
Most Vulnerable Publishers	Donut	Displays publishers with the most vulnerable items.
Most Vulnerable CIs	Donut	Displays CIs with the most vulnerable items.
Vulnerabilities by Score	Bar	Displays the number of vulnerability entries by vulnerability scores.
Reopened Vulnerable Items	List	Lists the reopened vulnerable items and their age.
Most Vulnerable CIs by Class	Donut	Displays CIs with the most vulnerable items.
Vulnerable Item Age	List	Lists the number of days since vulnerable items were last opened.
CIs with Vulnerability by Date	List	Lists configuration items that have been scanned within the last 30 days.
CIs not Scanned	List	Lists configuration items that have never been scanned for vulnerabilities.

Vulnerability Remediation dashboard

Starting with version 19.0 of Vulnerability Response, this dashboard is available in the New Experience UI.

Note: If you are on Tokyo, you can view the dashboards in the Next Experience UI but with some functional loss.

The Vulnerability Remediation dashboard contains the following tabs: Assigned to My Groups, Assigned to Me, and Requested by Me. The Assigned to My Groups and Assigned to Me tabs show the same reports. The former tab reports by the assignment groups you belong to, and the latter by vulnerable items or remediation tasks that are assigned to you. The Requested by Me tab reports the false positives and exceptions you requested.

Vulnerability remediation dashboard with the Requested by Me tab

Vulnerability Remediation dashboard example — Figure 1. Vulnerability Remediation dashboard

Reports

Search:

Table 2. Assigned to My Groups and Assigned to Me
Name	Visual	Description
Vulnerable Items by Risk Rating	Bar	Number of active vulnerable items grouped by risk rating over the selected time span.
Closed Vulnerable Items by Remediation Target Status	Bar	Number of Closed vulnerable items grouped by remediation target status over the selected time span.
Remediation Tasks by State	Bar	Number of active remediation tasks (RTs) grouped by state.
Remediation Tasks by Remediation Target Status	Bar	Number of active RTs grouped by remediation target status. This report excludes deferred vulnerable items.
Remediation Task Details	List	Remediation task record details in a list.

Table 3. Requested by Me
Name	Visual	Description
Status of Exception and False Positive Requests	Bar	Number of active requests from you.
Expiring Deferred and False Positive Remediation Tasks	Bar	Number of Deferred and False Positive Remediation Tasks (RTs), grouped by Until date.

Vulnerability Approvals dashboard

The Vulnerability Approvals dashboard contains the following reports for exception and false positive approvers.

Starting with version 19.0 of Vulnerability Response, this dashboard is available in the New Experience UI.

Note: If you are on Tokyo, you can view the dashboards in the Next Experience UI but with some functional loss.

Search:


Name	Visual	Description
Exception and False Positive Requests by Age Pending My Approval	Bar	Number of approvals pending for you, grouped by created date.
My Approval and Rejected Exception and False Positive Requests	Bar	Number of approval requests approved or rejected, grouped by approval state.
All Remediation Tasks by Risk Rating Pending Approval	Bar	Number of remediation tasks pending approval, grouped by risk rating.
All Pending and False Positive Approval Requests Grouped by Reason	Bar	Number of pending approval requests grouped by reason.

Xanadu Security Management

Filters

Versions

Products