AnsweredAssumed Answered

QID in relation to configuration/patch management

Question asked by Rene van Wolferen on Nov 21, 2013
Latest reply on Nov 26, 2013 by Rene van Wolferen

Hello,

 

we are using Qualys Guard VM and PC scan for our IT department and every week I got a report with vulnerabilities. The fact that vulnerabilites are found doesn't concern me, but what more inportant is for me is to see which process has failed.So I want to map a vulnerability to a process like patch management, configuration management etc.  Now I can check every vulnerability found but does some one already has a mapping between a vulnerability / Qid / CVE and a (ITIL) process?

 

Thanks and greetings.

Outcomes