Breadcrumbs

Rule 10 - Minimum CVSS Threshold Value

Rule Synopsis

For context on CVSS (Common Vulnerability Scoring System). CVSS are a framework used to assess the severity of vulnerabilities identified by CVEs. It provides a numerical score ranging from 0 to 10, along with qualitative ratings such as Low, Medium, High, or Critical. CVSS scores help organizations prioritize remediation efforts based on the severity of the vulnerability.

CI Sync allows customers to set a minimum CVSS Threshold to control the severity of CVEs synchronized into ServiceNow.  That is, you can define which CVEs are not worth synchronizing into ServiceNow based on the CVSS threshold value. 

Rule Details

  • By default, CI Sync uses a CVSS score of 0 (which means all CVEs will be synchronized into ServiceNow because all CVEs have a CVSS of greater than 0).

Override Options

Context

Customers may wish to increase the Minimum CVSS value to only synchronize CVEs with a higher severity (i.e. only sync CVEs with higher CVSS).

Options

Customers can set the Minimum CVSS to any number between 0 and 10.

Overriding via Connection Settings

Customers can perform the override using a “Connection Setting” via the CI Sync User Interface (i.e. customers can perform the overrides themselves). Additional information for this is available via the following documentation:

  1. For a general overview of CI Sync Connection Settings please read Understanding the use of CI Sync Connection Settings.

  2. For the specific CI Sync Connection Setting/s related to the rule described on this page please read Minimum CVSS v3 Value for Defender for Endpoint

For documentation on all CI Sync Connection Settings please visit the page tree Connection Setting Guides.

Additional Information

N/A

N/A

Support Model for Rule Overrides

Question: Can overrides be performed by customers without a Syncfish Extended Implementation and Support Plan?

Answer: Yes (via self-service in the CI Sync UI)

Question: Which Syncfish Extended Implementation and Support Plan is required to obtain overrides of this rule

Answer: Either a Bronze Plan, Silver Plan or Gold Plan (for customers wanting Syncfish assistance to perform overrides of this rule)