Identifying vulnerabilities with a BigFix patch

In IBM QRadar Vulnerability Manager, you can identify the vulnerabilities that have an available fix.

After you identify your vulnerabilities that have an available fix, you can investigate detailed fix information in the Vulnerability Details window.

Procedure

  1. Click the Vulnerabilities tab.
  2. In the navigation pane, click Manage Vulnerabilities.
  3. On the toolbar, select Search > New Search
  4. In the Search Parameters pane configure the following options:
    1. In the first list select External Reference of type.
    2. In the second list select Equals.
    3. In the third list select IBM BigFix Patch.
    4. Click Add Filter.
    5. Click Search.

      The By Vulnerability Instances page shows the vulnerabilities that have an available fix.

  5. Optional: Order your vulnerabilities according to their importance by clicking the Risk Score column heading.
  6. Optional: To investigate patch information for a vulnerability, click a vulnerability link in the Vulnerability column.
  7. Optional: In the Vulnerability Details window, scroll to the bottom of the window to view the vulnerability patch information.

    The Site ID and Fixlet ID are unique identifiers that you use to apply vulnerability patches by using HCL BigFix.

    The Base column indicates a unique reference that you can use to access more information on a knowledge base.