Remediating Application Vulnerability Response vulnerabilities

  • Release version: Xanadu
  • Updated August 1, 2024
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Remediating Application Vulnerability Response vulnerabilities

    Remediating vulnerabilities in Application Vulnerability Response (AVR) is a manual, structured process aimed at reviewing and closing application vulnerable items (AVITs). The process involves validating rules, monitoring remediation targets, analyzing dashboards, and managing AVIT states to ensure efficient vulnerability remediation within your ServiceNow instance.

    Show full answer Show less

    Key Features

    • Rule Validation: Ensure that CI Lookup and Assignment rules are correctly identifying and assigning AVITs. Guidance is available for revising these rules to maintain accuracy and automation.
    • Remediation Target Management: Validate and track remediation targets through specific rules associated with AVITs, which are executed upon AVIT import.
    • Dashboards and Reporting: Utilize built-in dashboards and reports to monitor AVIT statuses, including aging by state and priority. Activation of the Performance Analytics for Vulnerability Response application provides enhanced visibility tailored for App-Sec Managers and Security Champions with dedicated dashboards like Application Vulnerability Response Overview and My Application Vulnerabilities.
    • Risk Assessment and Reassignment: Continuously review and update AVIT risk levels and reassign them to appropriate remediation groups as necessary.
    • Automated Rescanning and State Management: Third-party imports trigger automatic rescans. AVITs with a “Fixed” state are closed automatically, while others are reopened for further action.
    • Integration with Veracode: Access detailed Veracode vulnerability data directly from AVIT records, including HTTP source requests, responses, and solution recommendations, enhancing remediation accuracy.

    Practical Benefits

    • Streamlines vulnerability remediation by providing a clear process and automation points.
    • Improves tracking and prioritization of vulnerabilities through dashboards and analytics tailored to different security roles.
    • Ensures accurate assignment and risk evaluation to facilitate timely and effective remediation efforts.
    • Leverages third-party integrations for enriched vulnerability context and recommended solutions.

    Monitoring remediation is a process that begins with reviewing status and ends with closing application vulnerable items (AVITs). Application Vulnerability Response offers tools and procedures to make that process more productive and efficient.

    Application Vulnerability Response remediation process

    Application vulnerable item remediation is done manually.

    An overview of the process:

    Get more details from Veracode

    Select Get More Details on application vulnerable items (AVITs) that have Veracode as the Source on the Application Vulnerable Item [sn_vul_app_vulnerable_item] table or from the list views in the Vulnerability Response Workspaces to view the following Veracode data.

    • HTTP Source request and Source response details for Dynamic Application Security Testing (DAST) scans are displayed on the HTTP Request/Response related list.
    • Solution recommendations from Veracode are displayed on the Findings related list.
    • HTTP Source request, Source response, and recommendations are displayed on the Details tab In the Vulnerability Response Vulnerability Response workspaces.
    • The Description column is supported on the Application Vulnerable Item [sn_vul_app_vulnerable_item] table.