Regardless of fixability status, Vanta will pull in all vulnerabilities detected from a vulnerability scanner integration. This ensures that companies continuously review and assess the risk of all vulnerabilities, not just those with remediations available. To make this vulnerability management process more seamless, users can automatically reopen vulnerability when remediation becomes available.
Automatically Reopening a Vulnerability
From the left-hand navigation panel, select Vulnerabilities
Choose Findings by Vulnerability
To find vulnerabilities that do not have a fix available, you can filter by Fixability
Click on the Vulnerability
Clicking on the CVE number will take you to the National Vulnerability Database and provide additional information on the vulnerability.
From here, select Deactivate Monitoring.
From the pop-up modal, choose if you would like to deactivate monitoring of the vulnerability on all assets or specific assets
Select the reason for deactivating, as Fix is not yet available
From here, you can choose to reactivate monitoring when a fix is available by selecting Yes
Select Deactivate