Tell me about the KnowledgeBase

Go to Knowledgebase, select the QID of the vulnerability and then select Edit Severity from the Actions menu. Slide the slider for Custom Level to the level you want to assign to the selected QID. Add a comment to indicate the change or reason for the change and then click Save.

If you have changed the severity of a QID and want to revert it to the Qualys defined severity, select the QID, and select Restore Severity from the Actions menu.

A message is displayed asking confirmation for restoring severity of the QID. Once you confirm, the severity of the QID is restored to the Qualys defined severity.

You can ignore vulnerabilities so they don't appear as actionable issues in the detections list. Go to Knowledgebase, select the QID and select Ignore from the Actions menu. When you ignore a detection, you'll be prompted to give a reason - false positive, acceptable risk or not applicable. Choose the appropriate reason and click Save. The ignored detection's status label is grayed out in the report and in the Detections list. By default, the detection will not appear in future reports on the same site or scan, until it is reactivated.

If you have marked the vulnerability as Ignore and now want to activate the vulnerability, select the QID, and select Activity from the Actions menu.

A message is displayed asking confirmation for activating the QID. Once you confirm, the QID is not ignored.