Module 5: Vulnerability Remediation & Other Actions Flashcards
Exception Management can be setup for how many types of Vulnerability Response?
All 4 types
Which field allows you to select between Vulnerability Response or GRC?
Manage exceptions using
What system property is set to true by default to enable Flow Designer for VR?
sn_vul.flow_designer_activation
T/F: Exception rules are only valid with GRC Vulnerability Response
False - Exception Rules are only valid with non-GRC Vulnerability Response
What enable you to automate the deferral process for vulnerable items (VIs)?
Exception rules
Where are exceptions for IVR, AVR, and CVR stored?
[sn_vul_auto_exception_rule] table
You can request an exception for the vulnerable items (VIs) that can’t be remediated or deferred immediately, by identifying the ________________, ________________, or ________________.
Impacted vulnerabilities
Configuration items (CIs)
Vulnerable items (VIs)
Exceptions for Configuration Compliance are stored in which table?
[sn_vulc_auto_exception_rule]
What is defined as a condition wherein the scanner reports that a vulnerability exists in the system, but in reality, there is no vulnerability?
False positive
What are false positives available on?
Vulnerable items
Remediation tasks
False positives are available for which vulnerability types?
Infrastructure
Application
Container
What role is required to set something as a false positive?
Remediation Owner
What entails requesting, reviewing, approving, or rejecting exceptions to a vulnerable item (VI) or remediation task (RT) that cannot be remediated according to the policy?
Exception management
______________________________ is when you acknowledge and agree to the consequences of not remediating a vulnerability.
Risk acceptance
______________________ is when you resolve a vulnerability and mitigate its risk.
Remediation
