I have noticed that some of my assets have old vulnerabilities (i.e., more than three months old) that were discovered by scans that were deleted.
How can I remove vulnerabilities that were detected by scans that no longer exist?
Thanks in advance,
Ok I need to ask a few questions before I can answer this.
Just the Vulns.
By the way, can you explain how does MVM handle these vulnerabilities that have been detected by deleted jobs? I.e., if new scans are capable to mark those vulns as 'removed' (if they have been corrected in the meanwhile).
Well this can either be tricky or difficult depending on if the vulnerabilities still exist on the targets or not. If the vulnerabilities no longer exist then just re scan the targets and check for those vulnerabilities. Once the scan engine detects that they aren't there any longer you will be good to go.
If the vulnerabilities still exist you are kind of stuck as there isn't any way to age out vulnerabilities. You can age out assets, which in your environment happens after 30 days, but your targets are still considered active assets. For active assets we will report on all vulnerabilities that have not been remediated no matter how old they are.