Policy number 0 in the policy list is the Ignored CVEs, Asset Groups, and Assets policy. This policy contains a list of vulnerabilities and assets for which Cortex Cloud will not create vulnerability issues. Findings will still be created for these vulnerabilities and assets, and you can review those on the Vulnerabilities and Vulnerable Assets pages. You can update the Ignored CVEs, Asset Groups, and Assets policy at any time by using the following steps to add or remove assets, asset groups, and CVEs.
Navigate to → → → .
The first policy in the policy list is the Ignored CVEs, Asset Groups, and Assets policy. Click on that policy to open the policy wizard.
Add or remove vulnerabilities, asset groups, and assets as needed. Click Next.
To add CVEs, asset groups, or assets, use the search bar in each section to find the value you are looking for, and select it to add it to the list.
To remove CVEs, asset groups, or assets, click the X to the right of each item in the list.
Review the Results Preview to see the list of findings that will not generate issues. If the list looks correct, click Done.