Suppressing Vulnerabilities

Threat Stack Daily Vulnerability Reporting analyzes all packages against the more than 2 million Common Vulnerabilities and Exposures (CVE) listed in the National Vulnerability Database (NVD) run by the National Institute of Standards and Technology (NIST). If business reasons prevent you from remediating a particular Vulnerability, you may choose to create a suppression on that Vulnerability and exclude it from daily reports and the Threat Stack UI.

The suppression of a vulnerability impacts the entire organization. The next time Vulnerability Assessment runs, it will not report on these suppressed vulnerabilities, even if they are found on new servers and agents. You may choose to remove a suppression at any time.

To work with the Vulnerabilities, first navigate to the Servers page in Threat Stack. 

To suppress a vulnerability: 

  1. Click on the Vulnerabilities button at the top of the Servers page. (Blue arrow) 
  2. Select the package you want to suppress. (Green Arrow)
  3. You may want to deselect a CVE you do not want to suppress at this time. (Orange arrow)
  4. Select your Reason. (Red Arrow)
  5. The Other option gives you the opportunity to enter your own reason. 
  6. Click on the red Suppress vulnerabilities button. 

 

 

To un-suppress a vulnerability:

  1. From the Vulnerabilities page, click on the Suppressed Vulnerabilities button. (Blue Arrow)
  2. Select the suppressions that you want to remove. (Green Arrow) 
  3. Click the red Remove suppressions button.

Have more questions? Submit a request

2 Comments

  • 0
    Avatar
    Darryl Kuhn

    Is there any way to annotate the suppression other than to choose other? Would like to mark a false positive and provide some references for the basis of that decision.

  • 0
    Avatar
    Megan Ahigian

    Hi Darryl,

    When you select "other" you can fill out your research and rationale in the text box beneath. And you have access to those notes when you review your suppressed vulnerabilities.

    Megan

Please sign in to leave a comment.