What is the difference between disabling and ignoring vulnerabilities?

There are two main ways to ignore/disable vulnerabilities.

  1. Ignoring a vulnerability for one or more specific host(s) (asset)/web apps(s).
  2. Disabling a vulnerability globally for the entire account.

Ignore

When ignoring a vulnerability, you hide it on the dashboard, menu notifications, status reports and the default view in Vulnerability manager (Vulnerability Manager) for selected host(s)/web app(s). However it can appear on any other host/web app where it's not ignored.

Example for a host: 
You choose to ignore TCP Timestamps on host 123.123.123.1. This means that you will not see that specific vulnerability on that specific host. However, if the same vulnerability is found on another host, let's say 123.123.123.2, it will appear. This is because the vulnerability is only ignored for the specific host(s) selected.

Disable

Vulnerabilities that are disabled will be completely hidden from the dashboard, menu notifications, status reports and the default view in Vulnerability manager for all host/web apps. 

Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.