This integration is populating the native tables of the Vulnerability Response Plugin.
For each open vulnerability identified by sRTMS a new Vulnerable Item will be created in ServiceNow.
The vulnerability will be created with the following datapoints:
- Configuration Item
- Vulnerability (cve)
- Vulnerable software (cpe)
If the vulnerability has previously been created in ServiceNow by a 3rd party scanner (e.g: Qualys, Rapid7, Tenable). sRTMS won't create a duplicate entry, however it will analyze the existing vulnerability, and if key items are missing (Vulnerable Software, Installation), sRTMS will update the Vulnerable Item with this information.