How To Ignore A Specific CVE on Prisma Cloud Compute

How To Ignore A Specific CVE on Prisma Cloud Compute

11648
Created On 08/23/21 21:58 PM - Last Modified 01/15/26 14:48 PM


Objective


This article shows the steps on how to setup a rule to ignore specific CVE.

Environment


  • Prisma Cloud Compute SaaS 9.11 or higher
  • Prisma Cloud Compute Self Hosted 19.11 or higher 

Procedure


  1. In the Prisma Cloud Compute Console, go to Defend > Vulnerabilities > Images 
  2. Click Add Rule
  3. Enter Rule name e.g my-rule
  4. Click Advanced Settings
  5. In Exceptions, Click "Add Exception"
  6. In CVE, Specify the CVE you want to ignore e.g "CVE-2018-8014"
  7. In Effect, select "Ignore"

  1. Click Add
  2. Click Save
  3. Test changes
    1. Try running the CVE, you have set to "Ignore". 
    2. This will allow any CVE ID that you’ve defined in the rule, and lets you run images containing those CVEs in your environment.

Additional Information


Please refer the documentation for Vulnerability Management
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u0000004LfnCAE&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language