Home page in the Vulnerability Manager Workspace

  • Release version: Washingtondc
  • Updated February 1, 2024
  • 6 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Home page in the Vulnerability Manager Workspace

    The Home page in the Vulnerability Manager Workspace, available in Vulnerability Response v21.0 and later, provides a visual summary of active records, including risk ratings and remediation progress. Customers can view prefiltered vulnerable items, apply custom filters, and drill down into data for deeper insights.

    Show full answer Show less

    Key Features

    • Visual Summaries: Displays active host, container, application vulnerabilities, and configuration test results through various visualizations.
    • Filtering Options: Users can create, apply, update, and delete filters to customize their data view.
    • Navigation Options: Access to both the classic UI and active records within the Vulnerability Manager Workspace directly from the Home page.
    • Refresh Functionality: Options to refresh saved filters and widgets for the latest information.

    Key Outcomes

    By utilizing the Home page, ServiceNow customers can efficiently monitor and manage vulnerabilities across their organization, enabling informed decision-making and streamlined remediation efforts. With role-specific access, users can ensure they have the necessary permissions to view and manipulate data relevant to their roles.

    Starting from Vulnerability Response v21.0, the Home page in the Vulnerability Manager Workspace provides a summary of active records by showcasing visualizations of risk rating, remediation progress, assignments to assignment groups, records in remediation tasks, and vulnerabilities from cloud resources.

    Starting from v21.0 of Vulnerability Response, the watch topics appears on the Watch Topics page. For more information, see Watch Topics page in the Vulnerability Manager Workspace.

    On the Home page, you can view the visualizations for the prefiltered host vulnerable items, container vulnerable items, application vulnerable items, and configuration test results. You can also view visualizations for a set of desired records by creating and applying filters. For more information on how to create, update, apply and delete filters, see Create and apply filters to visualize the summary of active records.

    Tip:

    If the sn_vul_cmn_ws.navigate_to_workspace system property is set to true by the admin, upon selecting the predefined filter links in the Vulnerable Items, Application Vulnerable Items, Container Vulnerable Items and Test Results modules from the All menu, these links open in the Vulnerability Manager Workspace's Home page with auto-selection of the corresponding saved filter.

    For example, if you select High Risk by navigating to All > Vulnerability Response > Vulnerable items, this link is redirected to the Home page of the Vulnerability Manager Workspace with auto-selection of the High Risk filter in the Host Vulnerabilities tab.

    On the Home page, you can perform the following:
    • Drill down into the data and view the list of records by clicking on the visualizations.
    • Navigate to the list of active records in the classic UI by selecting the View classic list link.
    • Open the list of active records in the Vulnerability Manager Workspace by selecting the active records count next to the View by drop-down.
    • Update the visualizations by selecting the Refresh Selected Saved Filter icon.
    • View the latest information by selecting the Refresh option in the three dots menu on a widget.

    Host Vulnerabilities

    The Host Vulnerabilities tab contains visualizations that provide an overall summary of the active host vulnerabilities.

    Roles required:
    • sn_vul.vulnerability_analyst, and sn_vul.vulnerability_admin to view the visualizations by applying filters, and create filters.
    • sn_vul.read_all granular role to view the visualizations by applying filters.
    Figure 1. Host Vulnerabilities tab
    Vulnerability Manager Workspace - Home page - Host Vulnerabilities

    The following table describes the visualizations on the Host vulnerabilities tab on the home page. Select these visualizations to get the list of corresponding records.

    Table 1. Visualizations in the Host Vulnerabilities tab on the Home page
    Visualization Type Description
    By assignment group & remediation status Distribution bar Active records assigned to various assignment groups that are grouped by remediation status.
    By state Bar Active records categorized by various states (Open, Under Investigation, Awaiting Implementation, In Review, Resolved, and Deferred).
    By risk rating Pie chart Active records categorized by risk rating (1 - Critical, 2- High, 3 - Medium, 4 - Low and 5 - None)
    In remediation task Semi circle donut Active records that are and aren't part of the remediation task.
    With existing exploits Semi circle donut Active records with and without known exploits.
    By external facing Semi circle donut Active records categorized by the asset exposure to internet.
    By CI class Bar Active records categorized by CI classes.
    By cloud resource Donut chart Active records categorized by various cloud resources.
    Deferred Items by reason Donut chart Active deferred records grouped by reason.

    Container Vulnerabilities

    The Container Vulnerabilities tab contains visualizations that provide an overall summary of the active container vulnerable items.

    Roles required:
    • sn_vul_container.vulnerability_analyst, or sn_vul_container.vulnerability_admin to view the visualizations by applying filters, and create filters.
    • sn_vul_container.read_all granular role to view the visualizations by applying filters.
    Figure 2. Container Vulnerabilities tab
    Container Vulnerabilities tab on the Home page of the Vulnerability Manager Workspace

    The following table describes the visualizations on the Host vulnerabilities tab on the home page. Select these visualizations to get the list of corresponding records.

    Table 2. Visualizations in the Container Vulnerabilities tab on the Home page
    Visualization Type Description
    By assignment group & remediation status Distribution bar Active records assigned to various assignment groups that are grouped by remediation status.
    By state Bar Active records categorized by various states (Open, Under Investigation, Awaiting Implementation, In Review, Resolved, and Deferred).
    By risk rating Pie chart Active records categorized by risk rating (1 - Critical, 2- High, 3 - Medium, 4 - Low and 5 - None)
    In remediation task Semi circle donut Active records that are and aren't part of the remediation task.
    With existing exploits Semi circle donut Active records with and without known exploits.
    By external facing Semi circle donut Active records categorized by the asset exposure to the internet.
    Docker Images Count Number of unique docker images.
    By base image Donut chart Active records categorized by the type of the image.
    Deferred Items by reason Donut chart Active deferred records grouped by reason.

    Application Vulnerabilities

    The Application Vulnerabilities tab contains visualizations that provide an overall summary of the application vulnerabilities.

    Roles required:
    • sn_vul.app_sec_manager to view the visualizations by applying filters, and create filters.
    • sn_vul.app_read_all granular role to view the visualizations by applying filters.
    Figure 3. Application Vulnerabilities tab
    Application Vulnerabilities tab on the Home page of the Vulnerability Manager Workspace

    The following table describes the visualizations on the Host vulnerabilities tab on the home page. Select these visualizations to get the list of corresponding records.

    Table 3. Visualizations in the Application vulnerabilities tab on the Home page
    Visualization Type Description
    By assignment group & remediation status Distribution bar Active records assigned to various assignment groups that are grouped by remediation status.
    By state Bar Active records categorized by various states (Open, Under Investigation, Awaiting Implementation, In Review, Resolved, and Deferred).
    By risk rating Pie chart Active records categorized by risk rating (1 - Critical, 2- High, 3 - Medium, 4 - Low and 5 - None)
    In remediation task Semi circle donut Active records that are and aren't part of the remediation task.
    With existing exploits Semi circle donut Active records with and without known exploits.
    By external facing Semi circle donut Active records categorized by the asset exposure to internet.
    By CI class Bar Active records categorized by CI classes.
    By cloud resource Donut chart Active records categorized by various cloud resources.
    Deferred Items by reason Donut chart Active deferred records grouped by reason.

    Configuration Test Results

    The Configuration Test Results tab contains visualizations that provide an overall summary of the active misconfigurations of the assets in your organization.

    Roles required:
    • sn_vulc.admin to view the visualizations by applying filters, and create filters.
    • sn_vulc.read granular role to view the visualizations by applying filters.
    Figure 4. Configuration Test Results tab
    Configuration Test Results tab on the Home page of the Vulnerability Manager Workspace

    The following table describes the visualizations on the Configuration test results tab on the home page. Select these visualizations to get the list of corresponding records.

    Table 4. Visualizations in the Configuration Test Results tab on the Home page
    Visualization Description
    By assignment group & remediation status Distribution bar Active records assigned to various assignment groups that are grouped by remediation status.
    By state Bar Active records categorized by various states (Open, Under Investigation, Awaiting Implementation, In Review, Resolved, and Deferred).
    By risk rating Pie chart Active records categorized by risk rating (1 - Critical, 2- High, 3 - Medium, 4 - Low and 5 - None)
    By technology Bar Active records categorized by technology.
    By test Bar Active records categorized by tests.
    By external facing Semi circle donut Active records categorized by the asset exposure to internet.
    By CI class Bar Active records categorized by CI classes.
    By cloud resource Donut chart Active records categorized by various cloud resources.
    Deferred Items by reason Donut chart Active deferred records grouped by reason.