This content has been marked as final. Show 2 replies
These reports show that HIP detected a behavior that matched an enabled IPS signature. That behavior could fall into either category you described. Some sigantures detect a behavior related to a vulnerability. In some cases this could be a false positive. You simply patch the vulnerability and then you can disable the signature. Just because you applied a patch doesn't mean that HIP won't still detect the behavior.
Thanks for the info Raja