I met a false positive in Vulnerability Management. How can i discard it in next scan?
I create a search list and setup a remediation policy with Closed/Ignored action.
But the false positive still exist.
The easiest way to ignore a vulnerability is as follows:
This specific QID will now be Ignored on this specific IP Address & Port. Once Ignored it will no longer be reported on any Report (from the Report Section in Qualys) for this IP Address. Please note this QID will still show up for this IP on any Scan Results (from the Scan Section in Qualys) as the Scan Results is the Full Raw Scan Data and does not include any filtering.
Retrieving data ...