You can use the Carbon Black Cloud console to disregard one or more known vulnerabilities in your organization environment. You cannot view the excluded CVEs in the console until you allow the scan check for these vulnerabilities.

This procedure describes the dismissal of a single vulnerability with default OS and App versions impacted by the CVE.

Procedure

  1. On the left navigation pane, click Vulnerabilities and select either of the assets tabs.
    • VMs
    • Endpoints
    • Public Cloud
  2. In the View by dropdown menu, select Vulnerabilities.
  3. Locate and select the CVE to exclude from your environment.
  4. Click Dismiss.
    The Dismiss Vulnerabilities window opens.
  5. Configure the dismissal of the CVE on all related assets.
    1. In the Related dropdown menu, select a reason.
    2. Enter a description in the Notes text box for future reference.
      If your reason is Other, a Note is mandatory. It is otherwise optional.
  6. To confirm the changes, click Dismiss.
  7. To update the list of vulnerabilities, refresh the page.

Results

After you dismiss a vulnerability and refresh the page, the CVE no longer displays in the list of vulnerabilities. You can view the CVE in the list of dismissed vulnerabilities.

It takes up to an hour for the vulnerability to dismiss and move from the list of vulnerabilities to the list of dismissed vulnerabilities.

What to do next

Access a dismissed vulnerability.