Release Summary

Features and Enhancements of the new IVR v. 4.2

• Vulnerabilities view by Device
• Universal Vulnerabilities Import
• Bug Fixing

Summary

We are happy to announce the release of BigFix Insights for Vulnerability Remediation (IVR) 4.2.0 the includes the following new features:

• Vulnerabilities View by Device: The IVR WebUI page will now include an option to switch the view from Vulnerabilities to Device List. This new view provides immediate visibility into the number of detected vulnerabilities for each correlated asset. From there, users can navigate to the Vulnerability Details page for a specific device, where all detected vulnerabilities are listed alongside the applicable filters for remediation, as well as other relevant fixes available for that device.
  Both the Device Vulnerabilities view and the Device Details page offer the option to initiate the remediation process for the selected device. Users can choose to remediate specific vulnerabilities or address all of them at once.
• Universal Vulnerability Import: IVR v. 4.2 introduces enhanced support for importing vulnerabilities using a generic .csv file format. This upgrade significantly improves upon the previous file import mechanism, offering a more flexible and accurate solution for correlating imported data. Key enhancements include:
  • Multi-file Import Support:
    Users can now import content from multiple files. During the import process, IVR provides the option to either merge the new data with existing content or replace the current data set (i.e., delete existing entries and import fresh data).
  • Device Correlation Support:
    The updated import feature allows vulnerabilities to be imported only for correlated devices—those vulnerable systems that have the BigFix agent installed. Once correlation is established, users can switch to the Device View to access a vulnerability overview from the device perspective.
  • Improved Content Accuracy and Correlation:
    When importing files from Tenable, the system leverages pre-correlated vulnerability-to-fixlet mappings, following the same logic used by the native Tenable connector. This ensures a faster import process and more accurate fixlet mapping for the imported vulnerabilities.

The goal of IVR remains the same, to help align Security and Operations teams with intelligent patching prioritization and automated remediation, reduce the time between vulnerability discovery and remediation, and greatly reduce risk by reducing the vulnerable attack surface.

Resources

• Documentation - BigFix Insights for Vulnerability Remediation (IVR) v. 4.0.0

Site Versions

It doesn’t sound like it does but just wanted to confirm - this version still doesn’t add the IVR4 level support for Qualys sources, does it? If that is in fact the case, is that still in the pipeline and any ETA?

Hi Angel,
Qualys is not yet supported on IVR v.4, but this is a work in progress item that will arrive in the next release of IVR (December 25 / January 26 to be confirmed).

Brilliant, thanks for the confirmation, Alessandro!