Suppress or Unsuppress Vulnerabilities

Default Vulnerability Suppression Overview

Based on extensive research, App Infrastructure Protection (AIP) created a list of default suppressions based on the following reasons:

  • Low priority or not an issue
  • No fix or patch available
  • Not applicable due to configuration

You can choose to create additional suppressions or remove an existing suppressions, even the AIP default suppressions, at any time.

To learn more, see Vulnerability Assessment Feature Overview.

Suppress a Vulnerability

Warning

The suppression of a vulnerability impacts the entire AIP organization. If you suppress a vulnerability, the next time the Vulnerability Assessment runs it will not report on that suppression, even if it is found on new servers and agents.

You can suppress vulnerabilities by package or individual vulnerability.

To suppress a vulnerability by package:

  1. Log into AIP.
  2. In the left navigation pane, click Servers, then Vulnerabilities.
  3. Click the Active Vulnerabilities button. The suppressed vulnerability list displays.


    suppressvulns.png

  4. Select the check box next to the package. All vulnerabilities in the package select, and the Action pane displays.
  5. In the Reason section, select one of the radio buttons.
  6. Click the Suppress [#] Vulnerabilities button. AIP suppresses the vulnerabilities in that package.

To suppress an individual vulnerability:

  1. Log into AIP.
  2. In the left navigation pane, click Servers, then Vulnerabilities.
  3. Click the Active Vulnerabilities button. The suppressed vulnerability list displays.


    suppressindivvuln.png

  4. Select the check box next to the individual vulnerability to suppress. The Actions pane displays.
  5. In the Reason section, select one of the radio buttons.
  6. Click the Suppress [#] Vulnerabilities button. AIP suppresses the vulnerability across all packages. 

Unsuppress a Vulnerability

Warning

The unsuppression of a vulnerability impacts the entire AIP organization. If you unsuppress a vulnerability, the next time the Vulnerability Assessment runs it will report on that vulnerability.

  1. Log into AIP.
  2. In the left navigation pane, click Servers, then Vulnerabilities.
  3. Click the Suppressed Vulnerabilities button. The suppressed vulnerability list displays.


    unsuppressvuln.png

  4. Select the check box next to the vulnerability to unsuppress.
  5. In the Actions pane, click the Remove [#] Suppression button. The vulnerability is no longer suppressed.

 

Articles in the Vulnerability Assessment Series

Vulnerability Assessment Feature

Vulnerability Assessment FAQ

Was this article helpful?
0 out of 0 found this helpful