Home page in the Vulnerability Manager Workspace
Summarize
Summary of Home page in the Vulnerability Manager Workspace
The Home page in the Vulnerability Manager Workspace offers ServiceNow customers a consolidated summary of active vulnerability records across hosts, containers, applications, and configuration test results. It features interactive visualizations that display risk ratings, remediation progress, assignment groups, remediation tasks, and cloud resource vulnerabilities. Customers can apply and manage filters to tailor the data views, enabling focused insights into specific subsets of vulnerabilities.
Show less
With the appropriate system property enabled, predefined filter links redirect users from the classic Vulnerability Response modules to corresponding filtered views within the Workspace Home page, streamlining navigation and enhancing efficiency.
Key Features
- Interactive Visualizations: Each tab presents multiple charts (bar, pie, donut) summarizing vulnerabilities by assignment group, remediation status, state, risk rating, exploit presence, internet exposure, configuration items (CI), cloud resources, and reasons for deferred items.
- Multiple Vulnerability Categories: Separate tabs for Host Vulnerabilities, Container Vulnerabilities, Application Vulnerabilities, and Configuration Test Results, each tailored with specific visualizations relevant to those vulnerability types.
- Role-Based Access: Visualization access and filter creation capabilities are controlled by roles specific to each vulnerability category, ensuring appropriate data security and visibility.
- Data Drill-Down: Users can click on visualizations to view detailed lists of corresponding records either within the Workspace or in the classic UI, facilitating deeper investigation.
- Real-Time Updates: Visualizations can be refreshed individually or collectively to reflect the latest vulnerability data.
- Filter Management: Customers can create, update, apply, and delete filters on the data to customize their views and focus on vulnerabilities of interest.
Details of Visualizations per Vulnerability Category
Host Vulnerabilities Tab: Displays active host vulnerabilities categorized by assignment group and remediation status, state, risk rating, remediation task inclusion, exploit presence, external exposure, CI class, cloud resource, and deferred reasons.
Container Vulnerabilities Tab: Similar to host tab, with additional metrics like Docker images count and base image type.
Application Vulnerabilities Tab: Visualizes application-specific vulnerabilities by similar dimensions as host vulnerabilities, including assignment, state, risk, exploitation, exposure, CI class, cloud resource, and deferred reasons.
Configuration Test Results Tab: Focuses on misconfigurations with visualizations categorized by assignment group, state, risk rating, technology, test type, internet exposure, CI class, cloud resource, and deferred reasons.
Practical Benefits for ServiceNow Customers
- Gain a comprehensive, at-a-glance understanding of vulnerability posture across multiple asset types.
- Quickly identify high-risk vulnerabilities and remediation progress to prioritize efforts effectively.
- Leverage role-based dashboards to ensure appropriate teams have targeted visibility and control.
- Use interactive charts and filtering to drill down into specific issues, accelerating investigation and remediation.
- Maintain up-to-date situational awareness with easy refresh options.
- Integrate seamlessly with existing Vulnerability Response workflows via auto-filtered navigation links.
The Home page in the Vulnerability Manager Workspace provides a summary of active records by showcasing visualizations of risk rating, remediation progress, assignments to assignment groups, records in remediation tasks, and vulnerabilities from cloud resources.
On the Home page, you can view the visualizations for the prefiltered host vulnerable items, container vulnerable items, application vulnerable items, and configuration test results. You can also view visualizations for a set of desired records by creating and applying filters. For more information on how to create, update, apply and delete filters, see Create and apply filters the summary of active records (VITs, AVITs, CVITs and CTRs).
If the sn_vul_cmn_ws.navigate_to_workspace system property is set to true by the admin, upon selecting the predefined filter links in the Vulnerable Items, Application Vulnerable Items, Container Vulnerable Items and Test Results modules from the All menu, these links open in the Vulnerability Manager Workspace's Home page with auto-selection of the corresponding saved filter.
For example, if you select High Risk by navigating to , this link is redirected to the Home page of the Vulnerability Manager Workspace with auto-selection of the High Risk filter in the Host Vulnerabilities tab.
- Drill down into the data and view the list of records by clicking on the visualizations.
- Navigate to the list of active records in the classic UI by selecting the View classic list link.
- Open the list of active records in the Vulnerability Manager Workspace by selecting the active records count next to the View by drop-down.
- Update the visualizations by selecting the Refresh Selected Saved Filter icon.
- View the latest information by selecting the Refresh option in the three dots menu on a widget.
Host Vulnerabilities
The Host Vulnerabilities tab contains visualizations that provide an overall summary of the active host vulnerabilities.
- sn_vul.vulnerability_analyst, and sn_vul.vulnerability_admin to view the visualizations by applying filters, and create filters.
- sn_vul.read_all granular role to view the visualizations by applying filters.
The following table describes the visualizations on the Host vulnerabilities tab on the home page. Select these visualizations to get the list of corresponding records.
| Visualization | Type | Description |
|---|---|---|
| By assignment group & remediation status | Distribution bar | Active records assigned to various assignment groups that are grouped by remediation status. |
| By state | Bar | Active records categorized by various states (Open, Under Investigation, Awaiting Implementation, In Review, Resolved, and Deferred). |
| By risk rating | Pie chart | Active records categorized by risk rating (1 - Critical, 2- High, 3 - Medium, 4 - Low and 5 - None) |
| In remediation task | Semi circle donut | Active records that are and aren't part of the remediation task. |
| With existing exploits | Semi circle donut | Active records with and without known exploits. |
| By external facing | Semi circle donut | Active records categorized by the asset exposure to internet. |
| By CI class | Bar | Active records categorized by CI classes. |
| By cloud resource | Donut chart | Active records categorized by various cloud resources. |
| Deferred Items by reason | Donut chart | Active deferred records grouped by reason. |
Container Vulnerabilities
The Container Vulnerabilities tab contains visualizations that provide an overall summary of the active container vulnerable items.
- sn_vul_container.vulnerability_analyst, or sn_vul_container.vulnerability_admin to view the visualizations by applying filters, and create filters.
- sn_vul_container.read_all granular role to view the visualizations by applying filters.
The following table describes the visualizations on the Host vulnerabilities tab on the home page. Select these visualizations to get the list of corresponding records.
| Visualization | Type | Description |
|---|---|---|
| By assignment group & remediation status | Distribution bar | Active records assigned to various assignment groups that are grouped by remediation status. |
| By state | Bar | Active records categorized by various states (Open, Under Investigation, Awaiting Implementation, In Review, Resolved, and Deferred). |
| By risk rating | Pie chart | Active records categorized by risk rating (1 - Critical, 2- High, 3 - Medium, 4 - Low and 5 - None) |
| In remediation task | Semi circle donut | Active records that are and aren't part of the remediation task. |
| With existing exploits | Semi circle donut | Active records with and without known exploits. |
| By external facing | Semi circle donut | Active records categorized by the asset exposure to the internet. |
| Docker Images | Count | Number of unique docker images. |
| By base image | Donut chart | Active records categorized by the type of the image. |
| Deferred Items by reason | Donut chart | Active deferred records grouped by reason. |
Application Vulnerabilities
The Application Vulnerabilities tab contains visualizations that provide an overall summary of the application vulnerabilities.
- sn_vul.app_sec_manager to view the visualizations by applying filters, and create filters.
- sn_vul.app_read_all granular role to view the visualizations by applying filters.
The following table describes the visualizations on the Host vulnerabilities tab on the home page. Select these visualizations to get the list of corresponding records.
| Visualization | Type | Description |
|---|---|---|
| By assignment group & remediation status | Distribution bar | Active records assigned to various assignment groups that are grouped by remediation status. |
| By state | Bar | Active records categorized by various states (Open, Under Investigation, Awaiting Implementation, In Review, Resolved, and Deferred). |
| By risk rating | Pie chart | Active records categorized by risk rating (1 - Critical, 2- High, 3 - Medium, 4 - Low and 5 - None) |
| In remediation task | Semi circle donut | Active records that are and aren't part of the remediation task. |
| With existing exploits | Semi circle donut | Active records with and without known exploits. |
| By external facing | Semi circle donut | Active records categorized by the asset exposure to internet. |
| By CI class | Bar | Active records categorized by CI classes. |
| By cloud resource | Donut chart | Active records categorized by various cloud resources. |
| Deferred Items by reason | Donut chart | Active deferred records grouped by reason. |
Configuration Test Results
The Configuration Test Results tab contains visualizations that provide an overall summary of the active misconfigurations of the assets in your organization.
- sn_vulc.admin to view the visualizations by applying filters, and create filters.
- sn_vulc.read granular role to view the visualizations by applying filters.
The following table describes the visualizations on the Configuration test results tab on the home page. Select these visualizations to get the list of corresponding records.
| Visualization | Description | |
|---|---|---|
| By assignment group & remediation status | Distribution bar | Active records assigned to various assignment groups that are grouped by remediation status. |
| By state | Bar | Active records categorized by various states (Open, Under Investigation, Awaiting Implementation, In Review, Resolved, and Deferred). |
| By risk rating | Pie chart | Active records categorized by risk rating (1 - Critical, 2- High, 3 - Medium, 4 - Low and 5 - None) |
| By technology | Bar | Active records categorized by technology. |
| By test | Bar | Active records categorized by tests. |
| By external facing | Semi circle donut | Active records categorized by the asset exposure to internet. |
| By CI class | Bar | Active records categorized by CI classes. |
| By cloud resource | Donut chart | Active records categorized by various cloud resources. |
| Deferred Items by reason | Donut chart | Active deferred records grouped by reason. |