Exceptions Audit

The Exceptions Audit page displays the list of exceptions that are non active or expired.

To View Exceptions Audit

Navigate to Audit -> Exceptions Audit. The Exceptions Audit page is displayed as shown below:

The following details related to the non active exceptions are displayed.

Name - Displays the name of the vulnerability that is marked as an exception.
Type - Displays the type of the vulnerability.
Application - Displays the name of the application that has the specified vulnerability. .
Service - Displays the name of the service that has the specified vulnerability.
Approved By - Displays the name of the person by whom the exception was approved.
Description - Displays the reason added by the user to mark the vulnerability as an exception.
Valid Till - Displays the date and time until when the exceptions will be active.

Upload CVE Suppression List

When the user is migrating from another system with an existing suppressed exceptions list, users can bulk upload their suppression list using this option.

Uploading the suppression list is team specific. The exception is applied for all the applications and services for the selected team. It cannot be applied to an application or service specifically.

To Add a CVE Suppression List

In the Exceptions Audit page, click Upload CVE Suppression List.

Click Upload File and select the file to be uploaded.
Click Save.

PreviousActive Exception NextDeployment Firewall

Last updated 7 hours ago