Using the VMDR prioritization report, you can detect which vulnerabilities to remediate first. The VMDR Prioritization Report contains of two sections: Summary and Details.
The Summary section of the VMDR Prioritization Report displays the findings with the following three sections.
Depending on the asset tags that you choose, the assets are scanned/assessed for vulnerabilities. Prioritized Assets is the count of assets out of the total assets with vulnerabilities that meet the combination of the detection age, RTIs, and attack vectors you selected.
In the above example, 8 assets matched the selected asset tags. Out of the 8 assets, 2 assets had vulnerabilities that met the combination of the selected detection age, RTIs, and attack vectors.
The Prioritized Vulnerabilities section displays a summary of prioritized vulnerabilities that are detected on the assets.
Instances: The count indicates the total number of vulnerabilities that meet the combination of the Detection Age, RTIs, and Attack Vectors you selected.
The count may include multiple occurrences of a single vulnerability (that is a single QID) detected on multiple assets.
In the above example, 154 vulnerabilities were detected on the 8 assets. Out of the 154 vulnerabilities, 8 vulnerabilities met the combination of the selected detection age, RTIs, and attack vectors across the 2 assets.
Unique: The count of unique vulnerabilities (excluding duplicate QID instances) out of the vulnerability instances identified/detected.
In the above example, out of the 8 instances, 6 are the unique vulnerabilities.
Count of the patches that are available with Qualys. Click Patch Now to initiate the process of patching the vulnerabilities. You could choose to perform one of the 3 actions:
Add to New Job - Opens the wizard to create a new job in the Patch Management module. Follow the instructions in the wizard and initiate the patching process. For more information, refer to the online help of the Patch Management module.
Add to Existing Job - Displays the list of existing jobs. Choose from one of the existing jobs (disabled state) and click Add. You can add maximum 200 patches to a single job. You cannot add patches to OnDemand or run-once (non recurring) jobs once they are enabled. For more information, refer to the online help of the Patch Management module.
View Missing Patches - Displays the list of missing patches for the prioritized assets and vulnerabilities. Show me
The details section includes detailed information about prioritized vulnerabilities, patches and prioritized assets. Use the tabs to toggle between the three views. The Vulnerabilities and Assets tabs offer search capabilities using limited tokens.
The Patch Now button is enabled only for patches available at Qualys.
You can export the VMDR prioritization report to dashboard in the form of a widget and continuously monitor the widget to check the vulnerabilities on the prioritized assets.
Here are the steps to export the VMDR prioritization report to dashboard.
Note: The Export to Dashboard button is enabled only after you have generated the VMDR prioritized report.
1) On the VMDR prioritized report, click Export to Dashboard.
2) Provide a name for the widget.
3) Select the Dashboard you need to add the widget to and then click Export.
The widget is added to the dashboard.
You can download the VMDR prioritization report to your local system in CSV format.
Here are the steps:
Note: The Download button is enabled only after you have generated the VMDR prioritized report.
1) On the VMDR prioritized report, click Download.
2) Provide a name and description (optional) for the report.
We'll use your browser's time zone by default, but you can choose a different time zone for the dates in the report.
3) Select Change timezones for dates included in report. checkbox and select the required timezone from the drop-down.
4) Click Download.
The VMDR prioritization report in CSV format is downloaded to your local system.