Viewing Technology Vulnerability Data
To view your vulnerability data you can go to the system package page and then click the Other Technologies menu. Then select the Software, Container, Log or Other scan vulnerabilities option. The normal table structure in OpenRMF® Professional shows up and lists all data in order of severity. This data can be searched with the normal search box at the top right of the table.
Click the “+” icon to view more detail on the entry. Several fields are linked to automatically filter the table based on that data. Click the information and you will see it show in the Search box just to the top right of the table and your data is filtered for your viewing pleasure.
This data is parsed from the .json or .xml valid files uploaded or data imported and shows the component and specific vulnerability information causing it to be displayed. You can only view this data, you cannot edit or change it. To update information on this in the POAM linked to the vulnerability data, you must do so in the POAM screen.
You can export the current listing of vulnerabilities by clicking the Export button. The export matches the current filter of data if any has been specified.
Filtering Technology Vulnerability Data
Click the Filter button to specify the type of data to show. You can specify the severity and status of the vulnerability data to view, similar to the checklist vulnerability filter. Again, if you export this data it exports the filtered data as well.
