Configuring Color Coding of Subnets to Indicate Vulnerability Status
SUMMARY Use subnet color coding to highlight vulnerability-related information about assets in the subnets on your topology graph.
- Click the Risks tab.
- On the navigation menu, click Topology.
- Click Actions > Properties > Edit to configure subnet color coding.
- Select one of the following color-coding options:
Option Description No color coding of subnets If you don’t want to use color coding, click No color coding of subnets. All of the subnet icons are a gray color when you choose this option.
Highest Aggregated CVSS score (Risk score) for any asset in a subnet Type a value for each color. When the risk score of any asset in a subnet exceeds the highest matching Greater than value, the color of the subnet icon changes to that color.
For example, if you configure a value of 14 for the red color, the subnet icon changes to red when any asset in that subnet has a risk score greater than 14.
Only the color for the highest matching value displays. The risk score is calculated by using the Common Vulnerability Scoring System (CVSS) and includes any risk adjustments that are made by JSA Risk Manager. You can view the Aggregated CVSS score for an asset on the Assets tab.
Number of vulnerabilities for any asset in a subnet Type a value for each color. When the total number of vulnerabilities exceeds the highest matching Greater than value, the color of the subnet icon changes to the color that represents that value.
Impact of vulnerabilities for any asset in a subnet Select a vulnerability impact for each color. When any asset in a subnet matches the highest listed impact, the color of the subnet icon changes to that color.
For example, you might select red to represent system loss. The color of the subnet icon changes to red when any asset in the subnet is impacted by system loss because of a vulnerability.
If you select the same vulnerability impact for two different colors, the color in the highest position is applied to the subnet icon when an asset is affected by the vulnerability impact.
- To update the vulnerability status of assets in your topology when a scan completes or
other vulnerability-related changes occur, you can take one of the following steps:
- Reset your topology by clicking Actions > Layout > Reset Layout.
- Clear your browser cache, and then refresh your browser.
Note: The subnet color in the topology graph appears in a lighter shade.