Vulnerability Management (New)

The Vulnerability Management view allows you to monitor assets efficiently using filters, searches, and actions. Powered by our new Modern Agent, Vulnerability Management helps identify patterns, trends, and anomalies, uncovering opportunities, risks, and areas for improvement.

Vulnerability Management provides 2 distinct tabbed views;

  • All Detections displays all the vulnerability detections individually.
  • By Vulnerability groups the vulnerabilities displayed, making it easier to see numbers of devices effected by each vulnerability.

You may notice vulnerabilities for an application that you have set Patch Management to auto-approve the patches for. In this scenario it is best to double check 2 things before raising a support case.

  1. Is the application still supported by the vendor?
  2. In the event an application is no longer supported by the vendor, there will be no more available patches for it, which means Patch Management cannot update it.

  3. Is Patch Management configured as you expect it to be?
  4. Assuming the application is still supported by the vendor, Patch Management should be patching as updates become available, assuming your configured Protection Policy is set to do so.

N-able recommends that, wherever possible, the application be uninstalled and an alternative application used in its place.

Vulnerability Management scans

The Vulnerability scan runs every 6 hours, based on the device's timezone;

Vulnerability scan schedule

  • 6:00 a.m.
  • Noon
  • 6:00 p.m.
  • Midnight

If a scan is missed on a device because it is powered off or otherwise non-operational, the device will be scanned at the next scheduled scan time.

Access the Vulnerability Management view

Viewable data fields via All Detections

Column name Description
Vulnerability ID The CVE code for the vulnerability.
Asset Name The unique identifier assigned to an asset, enabling efficient tracking, management, and troubleshooting. You can update this information within the classic platform (N-central or N-sight).
Threat Status Resolved or Unresolved.
Severity Critical

Important

Moderate

Low

CVSS (Common Vulnerability Scoring System) Score Numerical score as per CVSS for the vulnerability.
Update available Yes or No. Indicates if an update that will resolve the vulnerability is available.
Affected Products Product name affected by the vulnerability.
Customer Name of the client the asset belongs to.
Site The name of the client site where the device resides.
Date Published The date the vulnerability CVE was published.
First detected Initial detection date for the vulnerability on the device.
Last updated The most recent date of the previous vulnerability information update.

Viewable data fields via By Vulnerability

Column name Description
Vulnerability ID The CVE code for the vulnerability.
Severity Critical

Important

Moderate

Low

CVSS (Common Vulnerability Scoring System) Score Numerical score as per CVSS for the vulnerability.
Update available Yes or No. Indicates if an update that will resolve the vulnerability is available.
Asset at risk The unique identifier assigned to an asset, enabling efficient tracking, management, and troubleshooting. You can update this information within the classic platform (N-central or N-sight).
Customer Name of the client the asset belongs to.
Date Published The date the vulnerability CVE was published.
Last updated The most recent date of the previous vulnerability information update.

Actions available from the Vulnerability Management view

After you identify the vulnerability issues you are looking for, you can take action directly from the Vulnerability Management view with the following tasks:

Ecoverse functions

All our new Ecoverse views have common functionality, such as filtering and sorting the presented data, performing searches, and exporting. For full details and instructions, please select a link below.

As Ecoverse views are developed and released, they may not initially contain full Ecoverse functionality.

Related articles