I have a vulnerability scan that targets hosts by an asset tag based on operating system. The scan also excludes hosts with a dynamic asset tag based on an IP range. Yesterday, the scan targeted and ran against the hosts that were tagged to be excluded. How can this happen?
I contacted support and they confirmed that the "Do not Include" supersedes "Include" when targeting host assets. I also confirmed that the hosts were in both asset tags as expected.