Regardless of fixability status, Vanta will pull in all vulnerabilities detected from a vulnerability scanner integration. This ensures that companies continuously review and assess the risk of all vulnerabilities, not just those with remediations available. To make this vulnerability management process more seamless, users can automatically reopen vulnerability when remediation becomes available.
Automatically Reopening a Vulnerability
- From the left-hand navigation panel, select Vulnerabilities
- Choose Findings by Vulnerability
- To find vulnerabilities that do not have a fix available, you can filter by Fixability
- Click on the Vulnerability
-
-
- Clicking on the CVE number will take you to the National Vulnerability Database and provide additional information on the vulnerability.
-
- From here, select Deactivate Monitoring.
- From the pop-up modal, choose if you would like to deactivate monitoring of the vulnerability on all assets or specific assets
- Select the reason for deactivating, as Fix is not yet available
- From here, you can choose to reactivate monitoring when a fix is available by selecting Yes
- Select Deactivate