Finding assets with specific vulnerabilities

IBM QRadar Risk Manager evaluates a question and displays the results of assets that contain your vulnerability.

About this task

Security professionals, administrators, or auditors can identify assets in your network that contain known SQL injection vulnerabilities. They can promptly patch any assets that are connected to a protected network. As more events are generated, you can create events or offenses in IBM QRadar SIEM to monitor assets that contain SQL injection vulnerabilities.

Procedure

  1. Click the Risks tab.
  2. On the navigation menu, click Policy Monitor.
  3. From the Group list, select Vulnerability.
  4. Select the test question Assess assets with SQL injection vulnerabilities on specific localnet(s) (i.e. protected server network).
  5. Click Submit Question.