8000 [ Tenable.io ] Add a filter to the Vulnerability DataStream to select which severity levels to ingest. · Issue #8664 · elastic/integrations · GitHub
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content
[ Tenable.io ] Add a filter to the Vulnerability DataStream to select which severity levels to ingest. #8664
New issue
New issue
Open
Open
[ Tenable.io ] Add a filter to the Vulnerability DataStream to select which severity levels to ingest.#8664
Labels
Integration:tenable_ioTenable Vulnerability ManagementTeam:Security-Service IntegrationsSecurity Service Integrations team [elastic/security-service-integrations]
@piyush-elastic

Description

@piyush-elastic
piyush-elastic
opened on Dec 7, 2023

A customer is trying to ingest a large amount of vulnerability data from via our Tenable.io integration but struggling to get it in. Tenable have suggested that they exclude 'informational' vulnerabilities as they are noisy and generally don't recommend ingesting them.

As per documentation, the severity of the vulnerabilities to include in the export. Defaults to all severity levels. The severity of a vulnerability is defined using the Common Vulnerability Scoring System (CVSS) base score. Supported array values are:

  • info—The vulnerability has a CVSS score of 0.
  • low—The vulnerability has a CVSS score between 0.1 and 3.9.
  • medium—The vulnerability has a CVSS score between 4.0 and 6.9.
  • high—The vulnerability has a CVSS score between 7.0 and 9.9.
  • critical—The vulnerability has a CVSS score of 10.0.

Metadata

Metadata

Assignees

No one assigned

    Labels

    Integration:tenable_ioTenable Vulnerability ManagementTeam:Security-Service IntegrationsSecurity Service Integrations team [elastic/security-service-integrations]

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions
      0