I wanna make some tickets.
Under the following conditions:1. vulnerability with CVSS Score 7.0 or larger2. CVSS Score containing "Environmental Score"
Can you make this rule by Remediation Policy ?
This link provides a quick start to writing remediation policies. You'll note that you begin the process by creating a search list. If you create a dynamic search list, you'll see 3 CVSS elements that you can choose:
CVSS Base Score. Select to list vulnerabilities with a CVSS Base score that is equal to or greater than your entry.
CVSS Temporal Score. Select to list vulnerabilities with a CVSS Temporal score that is equal to or greater than your entry.
CVSS Access Vector. Select to list vulnerabilities based on the level of access required to exploit the vulnerability. CVSS Access Vector values are Local Access, Adjacent Network and Network. See CVSS Access Vector for a complete description of these values. Optionally, select "All" to list all vulnerabilities regardless of access vector or select "Undefined" to list vulnerabilities that have not been defined with an access vector by NIST or by the service.
Hope this helps,
Retrieving data ...