Skip to main content
McAfee MVISION Cloud

Vulnerability Incidents

The Incidents > Policy Incidents page is a central repository of all incidents that have violated Policies.

To view incidents that occur during your Vulnerability Scan: 

  1. Go to Incidents > Policy Incidents.
  2. Filter for Incident Type > Vulnerability Violations
    policy_incidents_vulnerability_violation.png

For complete details on the Policy Incidents page, see Policy Incidents Page

Vulnerability Incident Cloud Cards

Click an incident table row to open the Vulnerability Incident Cloud Cards, which provides an extended view of incident details. The Cloud Cards include a list of all Vulnerabilities, then a link to the specific CVE you want to investigate. They also provide links to more information on container images and VM instances 

NOTE: To create a Vulnerability Report, see Report - Vulnerabilities

vulnerability_incidents_details_expanded_5.3.0.png

The Vulnerability Incidents Cloud Card provides the following information:

  • ID
  • Severity
  • Service Name
  • Instance Name
  • Account Name
  • Region
  • Incident Created On
  • Last Updated
  • Owner. Select to assign an owner. 
  • Incident Status. Select to assign an Incident Status. 
  • Vulnerabilities. Click to open the Vulnerabilities pane. This lists all the Vulnerabilities found. Click an individual Vulnerability for more details, including:
    • CVSS Score. The CVSS Version number and score for the Vulnerability. If no score is available, the score number displays as N/A. 
    • Package
    • Namespace
    • View Entry. Click to view the CVE entry at cve.mitre.org
  • Container Image. Opens a view of Registry and Repository details.  
    vulnerabilities_cloud_card_container_image.png
  • VM Instance. Click to open the VM Instance in the Resources page. 
  • Policy
  • Scan
  • Incident History
  • Was this article helpful?