Versions Compared

Old Version 8

changes.mady.by.user Daniel Colon

Saved on

compared with

New Version Current

changes.mady.by.user Daniel Colon

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

The following highlights the current statuses that can be applied to vulnerabilities in ThreadFix. For further information on each parameter, click on the associated status.

Statuses Applicable to Vulnerabilities

Parameter

Value 

Required

Description

Developer Contested

Boolean

No

Provide 'true' to mark the vulnerability as Contested.  Provide 'false' to mark the vulnerability as Not Contested.

Defaults to 'true' if not provided.

Security Verified

Boolean

No

Provide 'true' to mark the vulnerability as Verified.  Provide 'false' to mark the vulnerability as Not Verified.

Defaults to 'true' if not provided.

False Positive

Boolean

No

Provide 'true' to mark the vulnerability as False Positive.  Provide 'false' to mark the vulnerability as Not False Positive.

Defaults to 'true' if not provided.

Info

Developer Contested, Security Verified, and False Positive are mutually exclusive options, and certain user permission levels allow for options to be set or disabled.

Scanner Exploitable

Boolean

No

Provide 'true' to mark the vulnerability as Exploitable.  Provide 'false' to mark the vulnerability as Not Exploitable.

Defaults to 'true' if not provided.

Info

Scanner Exploitable can co-exist with the statuses above and may be inherited in a Findings Response, but is not enabled for user customization.


For Further Vulnerability Management information please see the additional resources below: