This integration is populating the native tables of the Vulnerability Response Plugin.
For each open vulnerability identified by sRTMS a new Vulnerable Item will be created in ServiceNow.
The vulnerability will be created with the following datapoints:
- Configuration Item
- Vulnerability (cve)
- Vulnerable software (cpe)
If the vulnerability has previously been created in ServiceNow by a 3rd party scanner (e.g: Qualys, Rapid7, Tenable). sRTMS won't create a duplicate entry, however it will analyze the existing vulnerability, and if key items are missing (Vulnerable Software, Installation), sRTMS will update the Vulnerable Item with this information.
if you have questions or issues with the documentation, please contact us as firstname.lastname@example.org