Mitigation Overview
Qulays Mitigation provides a way to fix those vulnerabilities for which a patch may not be a viable option. The Mitigation application reduces the risk of data loss and prevents the isolation of the affected asset until a patch is available to fix the threat. This enhances the data security without disconnecting the asset from the network and allows the customer to continue his business without interruption.
Although we have a robust solution of Patch management available to address the vulnerabilities, a patch may not always be a feasible option due to:
- Some vulnerabilities may need registry key changes that a patch deployment cannot update.
- Some end-of-life softwares (EOL) cannot be patched, and the only option is to uninstall the software.
- A high business risk with potential downtime impacting the business and customers
- Release of workarounds from vendors just a few weeks before a patch becomes available.
The mitigation application reduces the vulnerability effect's on the assets, resulting in a reduction of the impact factor. The Qualys Detection Score (QDS) score is reduced when the impact factor is reduced. The Mitigation job runs on Windows and Linux assets.