Package: Invicti AppSec Core (on-demand), Invicti AppSec Enterprise (on-premise, on-demand)
Vulnerability deduplication
From the Global Settings, you can toggle the merging of vulnerabilities on or off. For each vulnerability, Invicti AppSec assigns a unique hash and checks for any existing vulnerability with the same hash whenever a new scan or import is completed.
Master and child vulnerabilities
You must select the scanner deemed decisive in determining whether a vulnerability is closed, as Invicti AppSec relies on scan results to execute validation scans and close vulnerabilities. Vulnerabilities from the prioritized scanner are designated as master vulnerabilities, with identical vulnerabilities from other scanners listed as child vulnerabilities of this master vulnerability.
The only exception to this rule arises when an issue for a vulnerability has already been opened. In such cases, despite the priority of scanners, vulnerabilities identified later by other scanners are categorized as child vulnerabilities.
Master vulnerabilities are the only ones displayed on dashboards, and only they are taken into consideration when:
- Opening issues
- Running validation scans
- Sending alerts
- Checking security criteria
Invicti AppSec automatically merges separate listings of the same vulnerability by the same scanner, thus reducing the number of vulnerabilities to manage.
Need help?
Invicti Support team is ready to provide you with technical help. Go to Help Center