Scan Details List
The Scan Details List report provides a detailed list of each vulnerability found by the selected scan with information on vulnerability name, CVSS score, severity, affected assets, host name, IP address, protocol, port, first seen, and last scanned. Use this report to investigate vulnerabilities detected in specific scans.
To access the Scan Details List report:
- In the Alert Logic console, click the menu icon (), and then click Validate.
- Click Reports, and then click Vulnerabilities.
- Under Scan Schedule Breakdown, click VIEW.
- Click Scan Details List.
View the report
To view the report, you must select a single value for Customer Account, Deployment Name, Scan Schedule Name, and Scan Start Date.
Filter the report
To refine your findings, filter your report by Category and Severity.
Filter the report using drop-down menus
By default, Alert Logic includes (All) filter values in the report.
To add or remove filter values:
- Click the drop-down menu in the filter, and then select or clear values.
- Click Apply.
Download the report
You can download the Scan Details List report as an image, data (CSV), crosstab, PDF, or PowerPoint file. To learn how to download reports, see Report Download Option.
Schedule the report
After you finish setting up the report, you can use SCHEDULE THIS REPORT to run it periodically and subscribe users or an integration (such as a webhook) to receive a notification when the report is generated. To learn how to schedule the report and subscribe notification recipients, see Scheduled Reports and Notifications.
Scan result categories
If the selected deployment has agent-based scanning enabled, Alert Logic consolidates agent-based scan results with the latest available internal network scan to provide a complete vulnerability assessment. You can use the Category filter to isolate vulnerability assessments in consolidated results. Listed categories include the vulnerability scan type(s) associated with the selected schedule:
|Category||Vulnerability Scan Type|
|Credentials||Internal network scan with credentials (authenticated)|
|Network||Internal network scan without credentials (unauthenticated)|
|External||External network scan|
For information about each scan type, see About Alert Logic Scans.
CVSS scores and severity
Alert Logic assigns
|Severity rating||CVSS v2 score range||CVSS v3 score range|
|Critical||Not applicable||9.0 - 10.0|
|High||7.0 - 10.0||7.0 - 8.9|
|Medium||4.0 - 6.9||4.0 - 6.9|
|Low||0.1 - 3.9||0.1 - 3.9|
Some vulnerabilities in the National Vulnerability Database have both CVSS v2 and CVSS v3 scores. Alert Logic displays the newer CVSS v3 score and severity rating in prominent locations and both scores in detail views. If only one CVSS score exists, Alert Logic uses that score and severity rating.
Scan details list
The list provides details of the vulnerability instances found by the selected scan. The list is organized by vulnerability name, CVSS score, severity, host name, IP address, protocol, port, first seen, and last scanned.