AlienVault® USM Central™

Vulnerabilities List View

USM Central provides a centralized view of all vulnerabilities detected in your connected deployments. The vulnerabilities main page lists vulnerabilities in reverse chronological order (the most recent item displays first). Go to Vulnerabilities.

The Vulnerabilities page displays information on vulnerabilities. On the left you can find the search and filters options. In the upper-left of the page, you can see any filters you have applied, and you have the option to create and select different views of the vulnerabilities. The main part of the page is the actual list of vulnerabilities. Each row describes an individual vulnerability.

If you want to analyze the data, you can maximize the screen and hide the filter pane. Click the icon to hide the filter pane. Click the icon to expand the filter pane.

You can find the list of the default columns in the Vulnerabilities page in the following table.

List of the Default Columns in Vulnerabilities
Column / Field Name Description
Last Seen Last date on which the vulnerability was seen in the assetAn IP-addressable host, including but not limited to network devices, virtual servers, and physical servers.. The displayed date depends on your computer's time zone.
Vulnerability ID Displays the associated Common Vulnerabilities and Exposures (CVEThe CVE system provides a method, using CVE IDs, to reference publicly known information security vulnerability and exposures in publicly released software packages and environments.) identification (ID), in case of having it.
Vulnerability Name Displays the name of the vulnerability.
Deployment Name of the deployment on which the vulnerability has been detected.
Labels Label applied to the vulnerability. See Labels on Vulnerabilities for more information.
Asset This is the asset that is vulnerable.
Severity Indicates the severity of the vulnerability. Values are High, Medium, and Low.
Score Displays the score in the Common Vulnerability Scoring System (CVSSOpen framework for communicating the characteristics and severity of software vulnerabilities that helps to prioritize actions according to their threat.). See Common Vulnerability Scoring System SIG for more information.
First Seen Detection date of the vulnerability in the asset. The displayed date depends on your computer's time zone.

From the list of vulnerabilities, you can click any individual vulnerability row to display more information on the selected vulnerability. See Viewing Vulnerabilities Details for more information.

Click the icon next to the asset name to access these options:

  • Add to current filter: Use this option to add the asset name as a search filter.
  • Look up in OTX: This option searches the IP address of the asset in the AT&T Cybersecurity Alien Labs Open Threat Exchange® (OTX™) page. See Using OTX in USM Anywhere for more information.
  • Full Details: See Viewing Assets Details for more information.

You can also sort items by selecting 20, 50, or 100 below the result table. You can classify some columns by clicking the icons to the right side of the heading. You can sort the item information in ascending or descending order.

Click Generate Report to export data. See Create Vulnerabilities Report for more information.

Click the icon to bookmark an item for quick access. Clicking the icon on the secondary menu shows the bookmarked items and provides links to them.

Views

To create a view configuration

  1. From the Vulnerabilities list view, select the filters you want to apply.
  2. Select Save View > Save as.

    Views dialog vox

  3. Enter a name for the view.
  4. Select Share View if you want to share your view with other users.
  5. Click Save.
  6. The created view is already selected.

To select a configured view

  1. From the Vulnerabilities list view, click View above the filters.
  2. Click Saved views and select the view you want to see.
  3. Note: A shared view includes the icon next to its name.

  4. Click Apply.

To delete a configured view

  1. From the Vulnerabilities list view, click View above the filters.
  2. Click Saved views and click the icon next to the saved view you want to delete.
  3. A dialog box displays to confirm the deletion.

    Note: You can delete the views you have created.

  4. Click Accept.
  5. Important: The icon does not display if the view is selected.