Prioritize your risk mitigation actions through Affected Product Categorization

Learn how Affected Product Categorization in Lansweeper empowers you to allocate resources and prioritize risk mitigation efficiently.

Affected Product Categorization enables Lansweeper Risk Insights users to allocate resources and prioritize risk mitigation actions.

Affected Product Categorization consists of three fields that can help you better organize and address the vulnerabilities in your network. Those fields are:

• Category: Indicates the root cause type, which can be Software, OS, or Hardware.
• Affected product: Lists the products affected by the vulnerability.
• Vendor: Identifies the vendors affected by the vulnerability.

The "Category" and "Affected product" fields are automatically visible as columns in the Risk Insights Active Vulnerability default view. The "Vendor" field can be added as a column in a custom view.

Each of these fields can be used to create a custom view and advanced filter to prioritize risk mitigation actions effectively.

Use Case: Find all CVEs affecting Microsoft Edge software

Let’s explore a use case demonstrating how you might use Affected Product Categorization to prioritize risk actions and allocate resources.

For this example, imagine you want to start addressing vulnerabilities that affect Microsoft Edge software.

1. In your Lansweeper Site, go to Risk Insights > Active vulnerabilities.
2. Select Advanced filter view.
3. From the dropdowns, select Affected product > Contains > Edge.
4. Select Apply.
5. Select Unsaved view > Save view and configurations.
6. Give your view a name. In this case, we’ll call it Microsoft Edge.
7. Optionally add a description.
8. Select Save.

A list of relevant CVEs and their information is displayed. From here, you can take further actions to decide how to start addressing issues. For example, you could:

• Select the Risk Score column so that the highest risk score appears at the top of the list.
• Select the Patch info column so that any CVEs with patches appear first in the list.

Once the list is ordered in a way that works for you, you can start learning more about the CVE and the affected assets.

1. Select the name of the CVE from the list.
2. You’re redirected to the CVEs summary list. If patch information is available, you can scroll down to the Patch info section and select the link.
3. Select Assets to view the specific assets where the vulnerability is present.

From there, you can begin resolving the vulnerabilities.

The above use case can be modified to fit whatever risk mitigation strategy best suits you and your network.

For more information about how Lansweeper handles risk insights, check out Introduction to Vulnerability Risk Assessment.

Was this post helpful? Select Yes or No below!
Did you have a similar issue and a different solution? Or did you not find the information you needed? Create a post in our Community Forum for your fellow IT Heroes!
More questions? Browse our Quick Tech Solutions.